Products Openwall GNU/*/Linux   server OS Linux Kernel Runtime Guard John the Ripper   password cracker Free & Open Source for any platform in the cloud Pro for Linux Pro for macOS Wordlists   for password cracking passwdqc   policy enforcement Free & Open Source for Unix Pro for Windows (Active Directory) yescrypt   KDF & password hashing yespower   Proof-of-Work (PoW) crypt_blowfish   password hashing phpass   ditto in PHP tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login php_mt_seed   mt_rand() cracker Services Publications Articles Presentations Resources Mailing lists Community wiki Source code repositories (GitHub) Source code repositories (CVSweb) File archive & mirrors How to verify digital signatures OVE IDs What's new

Date: Wed, 24 Aug 2016 20:42:09 +0200
From: "e@...tmx.net" <e@...tmx.net>
To: passwords@...ts.openwall.com
Subject: Re: GMOs And Passwords


> Entropy refers to the whole distribution not individual
> instances.

therefore entropy is not preserved when we shift the observer
from the defending side to the attacker's side
(which we always do in the context of password cracking)

it is not that entropy is "currently" not actionable.
entropy is in principle can not be used for the purpose in question
under any circumstances.



> Where I disagree with you though is that information about the whole set
> can be useful. Going to your GMO example, one problem that GMOs can
> introduce is lack of genetic diversity.

which can not be observed in a grain of wheat.
therefore you can not legitimately label a grain "GMO" coz of the lack 
of characteristic property.


> produce homogeneous populations.

so what? I do not eat populations.


> You can totally calculate the entropy for a set of known
> passwords. When trying to estimate the potential impact of different
> password creation policies on entropy, well things get more complicated,
> but ultimately it is a solveable problem. Where we run into issuess is
> then trying to translate that entropy value into some statement about
> the security of the system, but that's probably a topic for a different
> discussion. What I am trying to say though is that the generation
> process does sometimes provide useful information that can be tested for
> over a set of targets even if you can't test for it with an individual
> target.

this is exactly the "root of all evil" mistake.
no amount of entropy can scare the attacker.
your generation procedures are irrelevant, once the attacker uses 
ANOTHER generation procedure.
and when the attacker's procedure is simpler than yours, you end up 
surprised: "Why? i produced so much entropy!!!"

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.