From nobody@FreeBSD.org  Mon Jun 12 04:09:18 2006
Return-Path: <nobody@FreeBSD.org>
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 8986F16A46F
	for <freebsd-gnats-submit@FreeBSD.org>; Mon, 12 Jun 2006 04:09:18 +0000 (UTC)
	(envelope-from nobody@FreeBSD.org)
Received: from www.freebsd.org (www.freebsd.org [216.136.204.117])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 5600343D49
	for <freebsd-gnats-submit@FreeBSD.org>; Mon, 12 Jun 2006 04:09:18 +0000 (GMT)
	(envelope-from nobody@FreeBSD.org)
Received: from www.freebsd.org (localhost [127.0.0.1])
	by www.freebsd.org (8.13.1/8.13.1) with ESMTP id k5C49INS016041
	for <freebsd-gnats-submit@FreeBSD.org>; Mon, 12 Jun 2006 04:09:18 GMT
	(envelope-from nobody@www.freebsd.org)
Received: (from nobody@localhost)
	by www.freebsd.org (8.13.1/8.13.1/Submit) id k5C49Ihg016040;
	Mon, 12 Jun 2006 04:09:18 GMT
	(envelope-from nobody)
Message-Id: <200606120409.k5C49Ihg016040@www.freebsd.org>
Date: Mon, 12 Jun 2006 04:09:18 GMT
From: Ian Cognito <cryptonym@gmail.com>
To: freebsd-gnats-submit@FreeBSD.org
Subject: misc requests for gdbe
X-Send-Pr-Version: www-2.3

>Number:         98842
>Category:       bin
>Synopsis:       misc requests for gdbe
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-bugs
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          change-request
>Submitter-Id:   current-users
>Arrival-Date:   Mon Jun 12 04:10:20 GMT 2006
>Closed-Date:    Sat Oct 14 11:05:42 GMT 2006
>Last-Modified:  Sat Oct 14 11:05:42 GMT 2006
>Originator:     Ian Cognito
>Release:        6.0
>Organization:
>Environment:
>Description:
First, let me say gbde is fairly impressive, and my requests in no way constitute bashing it.

In the documentation, it'd be nice if we had some idea of how much entropy the passphrase should contain to prevent it from being the weakest link in the security.

The following ideas were taken from truecrypt.  I haven't really thought through whether they buy us much, so take them as food for thought...

It would be nice if we could specify a file on the filesystem which could be used in conjunction with the key to provide enough entropy for said pass phrase, and especially to be able to read it from a pipe (I do not know if gdbe can do this or not).  Alternately it could be used in conjunction with the standard key mechanisms to create the sector keys, and so a passphrase alone is insufficient to gain access to plaintext.  Either way it's sort of a cheap way of getting a lot of entropy out of a memorable passphrase, which tends to be somewhat weak alone (1-2 bits per letter).

>How-To-Repeat:

>Fix:

>Release-Note:
>Audit-Trail:

From: Ceri Davies <ceri@submonkey.net>
To: Ian Cognito <cryptonym@gmail.com>,
	<freebsd-gnats-submit@FreeBSD.org>
Cc:  
Subject: Re: docs/98842: misc requests for gdbe
Date: Thu, 15 Jun 2006 11:50:16 +0100

 On 12/6/06 05:09, "Ian Cognito" <cryptonym@gmail.com> wrote:
 
 > 
 > It would be nice if we could specify a file on the filesystem which could be
 > used in conjunction with the key to provide enough entropy for said pass
 > phrase, and especially to be able to read it from a pipe (I do not know if
 > gdbe can do this or not).  Alternately it could be used in conjunction with
 > the standard key mechanisms to create the sector keys, and so a passphrase
 > alone is insufficient to gain access to plaintext.  Either way it's sort of a
 > cheap way of getting a lot of entropy out of a memorable passphrase, which
 > tends to be somewhat weak alone (1-2 bits per letter).
 
 The geli(8) system has this.
 
 Ceri
 -- 
 That must be wonderful!  I don't understand it at all.
                                       -- Moliere
 
 
 
Responsible-Changed-From-To: freebsd-doc->freebsd-bugs 
Responsible-Changed-By: danger 
Responsible-Changed-When: Sat Oct 14 11:03:42 UTC 2006 
Responsible-Changed-Why:  
This is not a doc PR. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=98842 
State-Changed-From-To: open->closed 
State-Changed-By: danger 
State-Changed-When: Sat Oct 14 11:04:59 UTC 2006 
State-Changed-Why:  
Close this one as submitter was told what handles his issue. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=98842 
>Unformatted:
