Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I am trying to come up with a way to create secure passwords thru a process.
Heres the idea, what do you think?
it is easy to associate an image file with a service. For example you could do a screenshot of a particular website. The resulting png file would be the reminder image. You'd do this for each different site you authenticate to.
Then, for added security, you'd have a single 'seed' file, this could also be an image (image of a seed, for ex.)
to generate a password, you could do:
cat file.png seed.jpg | md5sum
the result would be your password.
if you ever needed to change your passwords, you'd only need to regenerate them by using a different seed.jpg
The files themselves could be stored obscurely in whichever place you want or on a usb stick, etc.
There are also a variety of software "digital certificate" technologies ... such as OpenSSL ... which in fact can be used (and are used) for digital authentication as well as for encryption. There are many ways to issue unique, non-forgeable credentials ... "passwords" are passé ... and to use them in applications and so-forth.
Take some random binary file - a picture, mp3, executable, etc. uuencode the binary file to produce a file of printable characters. Parse out the desired number of columns. Change or two of the alphabetic characters to lower case (uuencode produces all caps) and this is your password list. I did this a while back to generate passwords for various on-line uses such as this forum. They look like decent passwords to me. Letters, numbers, special characters just like we are supposed to use.
pick a book you like
go to chapter ?
read the first line
-- remove blank spaces and capitalize the first letter of each word
that is the pass phrase
-- simple
I think this idea is the best solution.
Other ideas put forward have heavy dependencies and assumptions that the contents of particular files (that are the composition of the password) do not change; where this can happen more often than you may think, due to corruption, accidental modification (not just by you but the OS and other users too) and simple carelessness.
I suggest simple carelessness because the OP suggested to combine two files and generate a checksum of the resulting value, in the CLI. Where your history and results are recorded and printed to your hard disk/display.
It's a good idea, but the risks out weigh the benefits and also has no difference to just having an encrypted password file.
Only two things are infinite, the universe and human stupidity, and I'm not sure about the former. - Albert Einstein
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.