Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Password Generator
Special Forums Cybersecurity Password Generator Post 54462 by Perderabo on Saturday 14th of August 2004 02:57:37 PM
Old 08-14-2004
No, your comments are useful. Especially since I moving away from that type of interface. I wrote a simple password generator and it worked good enough with ksh. But with pdksh, it broke pretty bad. The symptom was that I could predict what character it would pick under certain conditions. I traced the problem to pdksh's internal linear congruential random number generator.

This sent me down the path of making an ultra secure password generator. And another potential problem is that command line arguments are visible to an adversary. So I've been moving away from command line arguments toward a completely interactive solution. Also I've been working on a very good random number generator. The current version gathers entropy from the user. By examining the SECONDS variable, I know how long the user took to enter the command. That number, together with the length of the command, is used to very strongly vary the output of the random number generator. Simply tapping the return key a few times will tremendously "stir the pot".

Perhaps I've been obsessing with security too much. I could add in a method of non-interactive use. This would sacrifice the cryptographic strength of the RNG. But a password generator can function well without a cryptographic strength RNG.
 

9 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

Range generator

Dear All, I have a sorted file like 1 2 3 8 9 10 45 46 47 78 The output will be range like 1 3 8 10 45 47 78 78 (9 Replies)
Discussion started by: saifurshaon
9 Replies

2. What is on Your Mind?

Barcode Generator

QR Code Generator (0 Replies)
Discussion started by: Neo
0 Replies

3. Shell Programming and Scripting

time generator

Hi experts, I'd like to generate the table/file containing: number of milliseconds elapsed since midnight till midnight. It should contain 5 columns (hours minutes seconds milliseconds): Table will have theoretically 86 400 000 rows. My question is , is there somewhere the file or source... (7 Replies)
Discussion started by: hernand
7 Replies

4. Cybersecurity

swordfish --- a password generator

Here is my new password generation script. The attachment, swordfish.txt, is in dos format. Remember that you need to use dos2unix or flip or something to get it into unix format. The script is self documenting. It has an extensive help system built-in. And you can run: swordfish "set... (8 Replies)
Discussion started by: Perderabo
8 Replies

5. Shell Programming and Scripting

Sequence generator

Thanks Guys This really helped (5 Replies)
Discussion started by: robert89
5 Replies

6. UNIX for Beginners Questions & Answers

Password generator with user inputs

Hi, I am new to bash scripting and i wanted to make a bash script that will generate a password for a user. The user must enter his/her name and the url of the site the password is used for. And the script will generate a password with those two elements in the password. So if the url is... (0 Replies)
Discussion started by: Kvr123
0 Replies

7. Shell Programming and Scripting

Random Password generator with 2 digits and 6 characters

I am using the below to random generate a password but I need to have 2 numeric characters and 6 alphabetic chars head /dev/urandom | tr -dc A-Za-z0-9 | head -c 8 ; echo '' 6USUvqRB ------ Post updated at 04:43 PM ------ Any Help folks - Can the output be passed onto a sed command to... (9 Replies)
Discussion started by: infernalhell
9 Replies

8. Shell Programming and Scripting

Hostsfile generator

Hello I use a bash script to creating the hosts file /etc/hosts But there is a bug inside my output and I want to fix this. My Array looks like this: 205,IP 111.122.133.20 205,HOST2 unas 205,HOST1 unas15533 205,COMMENT # UNAS 775,IP ... (9 Replies)
Discussion started by: Marti95
9 Replies

9. Forum Support Area for Unregistered Users & Account Problems

Password sent via reset password email is 'weak' and won't allow me to change my password

I was unable to login and so used the "Forgotten Password' process. I was sent a NEWLY-PROVIDED password and a link through which my password could be changed. The NEWLY-PROVIDED password allowed me to login. Following the provided link I attempted to update my password to one of my own... (1 Reply)
Discussion started by: Rich Marton
1 Replies

LEARN ABOUT SUNOS

random

random(7D)							      Devices								random(7D)

NAME

       random, urandom - Strong random number generator device

SYNOPSIS

       /dev/random

       /dev/urandom

DESCRIPTION

       The /dev/random and /dev/urandom files are special files that are a source for random bytes generated by the kernel random number generator
       device. The /dev/random and /dev/urandom files are suitable for applications requiring high quality random numbers for  cryptographic  pur-
       poses.

       The  generator  device  produces  random  numbers from data and devices available to the kernel and estimates  the amount of randomness (or
       "entropy") collected from these sources. The entropy level determines the amount of high quality random numbers	that  are  produced  at  a
       given time.

       Applications  retrieve random bytes by reading /dev/random or /dev/urandom. The /dev/random interface returns random bytes only when suffi-
       cient amount of entropy has been collected. If there is no entropy to produce the requested number of bytes, /dev/random blocks until  more
       entropy	can  be  obtained.  Non-blocking  I/O  mode  can be used to disable the blocking behavior. The /dev/random interface also supports
       poll(2). Note that using poll(2) will not increase the speed at which random numbers can be read.

       Bytes retrieved from /dev/random provide the highest quality random numbers produced by the generator, and can be  used	to  generate  long
       term keys and other high value keying material.

       The  /dev/urandom interface returns bytes regardless of the amount of entropy available. It does not block on a read request due to lack of
       entropy. While bytes produced by the /dev/urandom interface are of lower quality than bytes produced by /dev/random, they  are  nonetheless
       suitable for less demanding and shorter term cryptographic uses such as short term session keys, paddings, and challenge strings.

       Data  can  be written to /dev/random and /dev/urandom. Data written to either special file is added to the generator's internal state. Data
       that is difficult to predict by other users may contribute randomness to the generator state and help improve the quality of future  gener-
       ated random numbers.

       By  default,  write  access is restricted to the super-user. An administrator may change the default read/write restriction by changing the
       permissions on the appropriate special files.

       /dev/random collects entropy from providers that are registered with the kernel-level cryptographic framework and implement  random  number
       generation routines. The cryptoadm(1M) utility allows an administrator to configure which providers will be used with /dev/random.

ERRORS

       EAGAIN	       O_NDELAY or O_NONBLOCK was set and no random bytes are available for reading from /dev/random.

       EINTR	       A signal was caught while reading and no data was	     transferred.

       ENOXIO	       open(2) request failed on /dev/random because no entropy provider is available.

FILES

       /dev/random

       /dev/urandom

ATTRIBUTES

       See attributes(5) for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE	     |	    ATTRIBUTE VALUE	   |
       +-----------------------------+-----------------------------+
       |Availability		     | SUNWcsr			   |
       +-----------------------------+-----------------------------+
       |Interface Stability	     |Evolving			   |
       +-----------------------------+-----------------------------+

SEE ALSO

       cryptoadm(1M), open(2), poll(2), attributes(5)

NOTES

       /dev/random  can  be  configured  to use only the hardware-based providers registered with the kernel-level cryptographic framework by dis-
       abling the software-based provider using cryptoadm(1M). You can also use cryptoadm(1M) to obtain the name of the software-based provider.

       Because no entropy is available, disabling all randomness providers causes read(2) and poll(2) on /dev/random  to  block  indefinitely  and
       results in a warning message being logged and displayed on the system console. However, read(2) and poll(2) on /dev/random continue to work
       in this case.

       An implementation of the /dev/random and /dev/urandom kernel-based random number generator first appeared in Linux 1.3.30.

       A /dev/random interface for Solaris first appeared as part of the CryptoRand implementation.

SunOS 5.10							   21 June 2004 							random(7D)
All times are GMT -4. The time now is 03:45 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy