From some on the comments on Schneier, some advice on generating passwords :
Generate a random alphanumeric password without using a too like apg:
A unique 8 char password for each website without any need to remember different phrases or use special password storage software :
Someone thinks uuencode will introduce bias in #1 and proposes the following. Also has the advantage that you can tune the character set to match the allowed chars in the target password system :
Generate a random alphanumeric password without using a too like apg:
dd if=/dev/random bs=6 count=1 2> /dev/null | uuencode -m - | head -2 | tail -1[ link ]
A unique 8 char password for each website without any need to remember different phrases or use special password storage software :
echo "(secret phrase) websiteX.com" | md5sum | cut -c1-8[ link ]
Someone thinks uuencode will introduce bias in #1 and proposes the following. Also has the advantage that you can tune the character set to match the allowed chars in the target password system :
dd if=/dev/random bs=100 count=1 | tr -cd 'A-Za-z1-9!@#%^&' | head -c 8[ link ]