undefined | Better HN

0 pointsaborsy3y ago0 comments

I could suggest a small improvement: a diceware password instead of directly taking the output of /dev/urandom. That would allow you to easily and securely exchange the symmetric key by typing it.

Also, /dev/urandom instead of /dev/random (as seed to diceware).

0 comments

acidburnNSA3y ago

Oooh smart. Yeah moving my keyfile when I get a new phone or device every few years via a USB cable hasn't been much of a hassle, but your plan is even better.

j / k navigate · click thread line to collapse

0 pointsaborsy3y ago0 comments

I could suggest a small improvement: a diceware password instead of directly taking the output of /dev/urandom. That would allow you to easily and securely exchange the symmetric key by typing it.

Also, /dev/urandom instead of /dev/random (as seed to diceware).

0 comments

acidburnNSA3y ago

Oooh smart. Yeah moving my keyfile when I get a new phone or device every few years via a USB cable hasn't been much of a hassle, but your plan is even better.

j / k navigate · click thread line to collapse