| 1 |
Hi, |
| 2 |
|
| 3 |
Lorenzo Hernández García-Hierro wrote: |
| 4 |
> After reading and trying to work around the #88831 bug |
| 5 |
> (http://bugs.gentoo.org/show_bug.cgi?id=88831), I realized that the |
| 6 |
> automatic generation of passwords and alike is done by using just the |
| 7 |
> $RANDOM bash function, which is pretty weak (among that, wrongly used, |
| 8 |
> can cause some overhead). |
| 9 |
|
| 10 |
Nice work, but do we really need that strong passwords? IMHO the |
| 11 |
passwords generated by portage should be changed right after emerging |
| 12 |
the piece of software anyway, although that might not be reality in many |
| 13 |
cases :( I didn't have a closer look to the packages you listed, but i |
| 14 |
hope those don't need a password for a unix account. Probably (just |
| 15 |
guessing) they save the password in plain text anyway, so it wouldn't |
| 16 |
matter that much... |
| 17 |
|
| 18 |
Perhaps I'm just totally wrong. |
| 19 |
-- |
| 20 |
gentoo-dev@g.o mailing list |
Archives