libreboot

Unnamed repository; edit this file 'description' to name the repository.
Log | Files | Refs | README

commit abe7115bb06ad6e30e2545b0b6468cede534b28a
parent d05afc608200090ea0c3ab9d17cacdb42cc7e5ff
Author: Leah Rowe <info@minifree.org>
Date:   Tue,  7 Mar 2017 05:27:02 +0000

docs/gnulinux/grub_hardening.html: recommend diceware passphrases

Diffstat:
docs/gnulinux/grub_hardening.html | 24+++++++++++++-----------
1 file changed, 13 insertions(+), 11 deletions(-)

diff --git a/docs/gnulinux/grub_hardening.html b/docs/gnulinux/grub_hardening.html @@ -80,17 +80,19 @@ cbfstool my.rom remove -n grubtest.cfg your firmware. <b>This should be different than your LUKS passphrase and user password.</b> </p> -<!-- - Use of the <i>diceware method</i> is recommended, for generating secure passphrases (as opposed to passwords). - WTF is a diceware method?! - <p style="font-size:2em;"> - MAKE SURE TO DO THIS ON grubtest.cfg *BEFORE* DOING IT ON grub.cfg. - Then select the menu entry that says <i>Switch to grubtest.cfg</i> and test that it works. - Then copy that to grub.cfg once you're satisfied. - WHY? BECAUSE AN INCORRECTLY SET PASSWORD CONFIG MEANS YOU CAN'T AUTHENTICATE, WHICH MEANS 'BRICK'. - </p> - <p> - (emphasis added, because it's needed. This is a common roadblock for users) + + <p> + Use of the <i>diceware method</i> is recommended, for generating secure passphrases (as opposed to passwords). + Diceware method involves using dice to generate random numbers, which are + then used as an index to pick a random word from a large dictionary of words. + You can use any language (e.g. English, German). + Look it up on a search engine. Diceware method is a way to generate + secure passphrases that are very hard (almost impossible, with enough words) + to crack, while being easy enough to remember. On the other hand, most + kinds of secure passwords are hard to remember and easier to crack. + Diceware passphrases are harder to crack because of far higher entropy + (there are many words available to use, but only about 50 commonly used symbols + in pass<em>words</em>). </p> --> <p>