Package Details: correcthorse-git 1.0.r23.g2a214af-1

Git Clone URL: https://aur.archlinux.org/correcthorse-git.git (read-only)
Package Base: correcthorse-git
Description: Passphrase generator based on https://xkcd.com/936/
Upstream URL: https://github.com/rmartinjak/correcthorse
Licenses: WTFPL
Conflicts: correcthorse
Provides: correcthorse
Submitter: None
Maintainer: TrialnError
Last Packager: TrialnError
Votes: 0
Popularity: 0.000000
First Submitted: 2012-06-09 14:06
Last Updated: 2015-08-06 10:33

Dependencies (1)

Required by (0)

Sources (1)

Latest Comments

dinghy commented on 2017-02-09 22:56

Careful! This software does use actual randomness. The correcthorse algorithm needs perfect randomness and non-reproducibility to create secure passwords (as does any password generator, in fact).
But THIS IMPLEMENTATION by rmartinjak HAS A FLAW: successive commands within about a second generate the same password. This implementation is therefore time-based and not making use of /dev/(u)random.
Proof: the following is [ENTER]+[UP] as fast as possible.
~  correcthorse
goneededpurposewhy
~  correcthorse
unusualgovernmentgirlyesterday
~  correcthorse
unusualgovernmentgirlyesterday
~  correcthorse
unusualgovernmentgirlyesterday
~  correcthorse
unusualgovernmentgirlyesterday
~  correcthorse
unusualgovernmentgirlyesterday
~  correcthorse
weakhispleasantthey
~  correcthorse
weakhispleasantthey
~  correcthorse
weakhispleasantthey
~  correcthorse
weakhispleasantthey
~  correcthorse
weakhispleasantthey
~  correcthorse
johnnyparallelrecognizenumeral