@YesIKnowIT

> http://www.ostechnix.com/4-easy-ways-to-generate-a-strong-password-in-linux/​
My preferred :
openssl rand 14 -base64
gpg --gen-random --armor 1 14
... but the passwords are not easy to remember. A good argument to use a password manager.

I ended up writing #passgen (https://github.com/codesections/pass-gen/) to solve that problem. It's another xkcd-style solution, though with a bigger dictionary and more customization options than many takes on that solution

@YesIKnowIT

> http://www.ostechnix.com/4-easy-ways-to-generate-a-strong-password-in-linux/​
My preferred :
openssl rand 14 -base64
gpg --gen-random --armor 1 14
... but the passwords are not easy to remember. A good argument to use a password manager.

I ended up writing #passgen (https://github.com/codesections/pass-gen/) to solve that problem. It's another xkcd-style solution, though with a bigger dictionary and more customization options than many takes on that solution

@profoundlynerdy@mastodon.technology @codesections

> Perl has the advantage of being installed *everywhere*.

That's an interesting perspective. One of the reasons I wrote #passgen (which is a #bash rewrite of xkpasswd with some added features) was that I was tired of installing #perl for just that one program.

@profoundlynerdy@mastodon.technology @codesections

> Perl has the advantage of being installed *everywhere*.

That's an interesting perspective. One of the reasons I wrote #passgen (which is a #bash rewrite of xkpasswd with some added features) was that I was tired of installing #perl for just that one program.

@gentoorebel

Also, on the subject of "why yes I rewrote that in bash, why?", you might be interested in one of my side projects: #passgen, a full passphrase generator based off similar principles to diceware or other word-list based passphrase generators. It's pure bash and plays well with standard input/output.

https://passgen.codesections.com

@brennen Agreed! #passgen has a man page—and, yeah, it took about as long to write as the program itself, but it was worth it!

@peanutbutter144

I'm also a happy user of pass—so happy that I built a bit of a companion app called #passgen (https://passgen.codesections.com).

It's a passphrase generator that uses the same style as pass. (Because a passphrase will be both more secure and easier to type than a password) It pipes it output to standard out, so it works well with pass: you can generate a new password and store it with pass with `pass-gen -e | pass -e USERNAME`

End of self promotion, but yeah, pass is really great!

@mike @Qwxlea

Interesting. I wouldn't say that I live in the shell—rather, I live in the *terminal*. I use zsh commands a lot, of course, but I also write bash, python, or javascript scripts frequently; I don't feel the need to link everything together.

I wonder if some of this comes from a developer vs. sysadmin use cases. I write a fair bit of bash—including #passgen, my most developed #foss project so far—but I don't think I've every written an *inline* script.

Interesting perspective!

@kev Another language I'd put in the mix for those goals is #bash. It's not quite as versatile as others, but it's still very powerful. It's what #pass and my own #passgen are written in, for example. And for simple automation in #linux environment, it really can't be beat.

Plus, anyone who is comfortable with the command line is halfway to knowing #bash.

The second half of The Linux Command Line has a great introduction to bash. Plus, it's free under a CC license: http://linuxcommand.org/tlcl.php

@manulfk

I'm a big fan of #pass, which is a CLI tool that stores passwords in a #GPG-encrypted #git repo (there are non-CLI clients for it) https://www.passwordstore.org/

I like pass so much that I wrote a passphrase generator in the same spirit, called #passgen (https://passgen.codesections.com). It's a #FOSS tool that generates passphrases that are secure and easier to type in (for those occasions when you can't paste from a password manager).

@puffinux Oh, this is fun—I'll try to stick to your format:
Programs I use with #linux (#arch) as my OS:

#dwm + dmenu (display manager)
#qutebrowser (browser)
#neovim (text editor)
#vim + qutebrowser (mastodon)
#weechat + #znc (IRX)
#keybase + vim (encrypted chat)
#mutt (email)
#feh (image viewer)
#scrot (screenshots)
#simpleTerminal (terminal emulator)
#tmux (terminal multiplexer)
#mupdf (PDF viewer)
#pass + #passgen (password manager)

#FOSS #FLOSS #openSource #freeSoftware

@d4klutz I'm a huge fan of #pass https://www.passwordstore.org/ — so much so that I built a passhrase generator in the same spirit (though it works with other managers too)

#passgen https://passgen codesections.com

Turns out that the top #hashtags I've used or favorited on Mastodon are:

#rust(65)
#introductions(60)
#introduction(51)
#gutenberg(41)
#linux(39)
#foss(32)
#mastodon(30)
#fosstodon(27)
#passgen(18)
#arch(17)

I'm pretty happy with that as a summary of my conversations on here.

(Thanks to @kensanata 's useful mastodon-archive tool for generating this info. https://github.com/kensanata/mastodon-backup)

@crodges

If you're a big user of #pass, you might also like my current #FOSS project, #passgen. https://passgen.codesections.com

It's CLI app that generates passphrases that can be piped on to pass. For example, `pass-gen -e | pass add <username>` generates a new passphrase and pipes the adds it to a pass store.

passgen creates passphrases that are much easier to type in if a site ever blocks you from pasting or if you need to use a different computer—and they're even more secure.

@coffee

@coffee

Definitely going to be trying this out when I get some time later this afternoon—it sounds very cool!

(Welcome to the club of #fosstodon members who've worked on companion software to #pass. I didn't expect #passgen to have company in that particular club!)

Just how concerned should I be by a message from Gmail saying that someone attempted to reset my password from Texas (no where near where I live)? I've already changed my password (#passgen made it easy to come up with a new one), and I have two-factor authentication enabled. And gmail isn't my primary email, but it's still one I don't want to have compromised.

I figure it's probably someone with a similar email address miss-typing their address, but wanted to ask how worried I should be.

@alatiera
I disagree, at least for nouns. Imagine I want to toot about a new version of an open-source project. Which sounds better:

> I just released v0.5 of #passgen, the passphrase generator that follows the #unix philosophy.

Or:

> I just released v0.5 of passgen, the passphrase generator that follows the unix philosophy.
#passgen #unix

The first clearly and correctly signals that the hashtag is a link to related content; by my lights, it's much better. You disagree?

@bryangruneberg

I might have mentioned this already, but I wrote a companion-app of sorts to pass. My app, #passgen, generates secure random passphrases (instead of passwords), since they're much easier to type whenever you can't paste. It's designed to work well with #pass (well, with anything that accepts standard input, but pass is what I use). To generate a new passphrase for pass, you'd just run `pass-gen -e | pass add <username>`.

More info at https://passgen.codesections.com
j

@ObjFW
I think that depends some on your #git workflow. I'm of the "commit early, commit often" school of thought—it makes `git bisect` so useful! So, for example, my #passgen project already has over 50 commits. https://github.com/codesections/pass-gen If I'd tooted about each one, I'm sure it would have annoyed people.

What I've done instead is to toot about each of the four versions I've released, which (hopefully!) isn't annoying.

@fleischie28

One question, though:

For the #linux version, did you consider using `dev/urandom` to generate your random numbers? That would give you much stronger random numbers, suitable for more secure use. For example, you could use `$(( $MIN + $(od -An -N2 -i /dev/urandom) % ($MAX - $MIN + 1) ))` to generate an integer between MAX and MIN (and then divide to get it within your 0–1) range).

That's the basic approach to randomness I take in #passgen (https://passgen.codesections.com/)