<html><head><meta http-equiv="Content-Type" content="text/html charset=utf-8"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class="">I’m getting old, and last time I had a fingerprint card created it took them a while to pull what looked like a real print. I volunteer at a place where paid staff check in and out with their fingerprint. It’s good I’m “unpaid staff” because they might not be able to read my finger.<div class=""><br class=""></div><div class="">Speaking of pronounceables:<br class=""><div class=""><br class=""></div><div class="">My son put me onto “diceware” to generate strong, pronounceable passwords:</div><div class=""><a href="http://world.std.com/~reinhold/diceware.html" class="">http://world.std.com/~reinhold/diceware.html</a></div><div class=""><br class=""></div><div class="">I have a script on my macbook based on code by Aaron Toponce:</div><div class=""><a href="https://pthree.org/2012/09/27/automated-diceware-passwords/" class="">https://pthree.org/2012/09/27/automated-diceware-passwords/</a></div><div class=""><a href="http://world.std.com/~reinhold/diceware.wordlist.asc" class="">http://world.std.com/~reinhold/diceware.wordlist.asc</a></div><div class=""><br class=""></div><div class="">We beefed up the randomizer a little. Don’t remember where this came from, so I can’t defend it:</div><div class=""><br class=""></div><div class=""><font face="Courier" class=""><span style="font-size: 9px;" class="">function five-dice-roll {<br class="">    I=0<br class="">    while [[ "$I" -lt 5 ]]; do<br class="">        RND=$(echo -n $((0x$(head -c 1 /dev/random | xxd -ps))))<br class="">        if [[ "$RND" -lt 252 ]]; then<br class="">            DIE=$(((RND%6)+1))<br class="">            DICE="${DICE}$DIE"<br class="">            I=$((I+1))<br class="">        else<br class="">            continue<br class="">        fi<br class="">    done<br class="">    echo -n "$DICE"<br class="">}</span><br class=""></font>___________________</div><div class=""><br class=""></div><div class=""><div class=""><div><div class="">On Aug 2, 2016, at 15:00:05, Matt Birkholz <<a href="mailto:matt@birchwood-abbey.net" class="">matt@birchwood-abbey.net</a>> wrote:</div><br class="Apple-interchange-newline"><div class=""><div class=""><blockquote type="cite" class="">From: Stephen Partington <<a href="mailto:cryptworks@gmail.com" class="">cryptworks@gmail.com</a>><br class="">Date: Tue, 2 Aug 2016 06:01:08 -0700<br class=""><br class="">Point being. Passphrase should be combined with biometric.<br class=""></blockquote><br class="">How about one big pronounceable?  I've found even large ones (16<br class="">letters) surprisingly easy to remember, so I use several.  I get them<br class="">from gpw(1).  Unfortunately the manpage does not say how many bits of<br class="">entropy are in each trigraph.<br class=""><br class="">Aren't They getting search warrants before using fake fingertips?<br class="">They will kick in your door and kill your dog if they can get a<br class="">warrant.  Using a fake fingertip seems downright civil compared to<br class="">THAT.<br class="">---------------------------------------------------<br class="">PLUG-discuss mailing list - <a href="mailto:PLUG-discuss@lists.phxlinux.org" class="">PLUG-discuss@lists.phxlinux.org</a><br class="">To subscribe, unsubscribe, or to change your mail settings:<br class=""><a href="http://lists.phxlinux.org/mailman/listinfo/plug-discuss" class="">http://lists.phxlinux.org/mailman/listinfo/plug-discuss</a><br class=""></div></div></div><br class=""></div></div></div></body></html>