aboutsummaryrefslogtreecommitdiff
path: root/system/apg/README
blob: 68decec64751ce336cd3893ea23cdda4561728d6 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
apg (automated password generator)

apg generates random passwords according to several algorithms. The
default algorithm is pronounceable password generation algorithm
designed by Morrie Gasser and described in 'A Random Word Generator
For Pronounceable Passwords (National Technical Information Service
(NTIS) AD-A-017676)'.

This SlackBuild by default patches apg to use /dev/urandom rather than
/dev/random for generating random seeds, to avoid apg blocking while
waiting for the kernel to gather more entropy. If you're worried about
this being possibly insecure, first read:

http://web.archive.org/web/20201109034537/https://www.2uo.de/myths-about-urandom/

Then, if you remain unconvinced, you can run this script with
URANDOM=no in the environment to use /dev/random. Remember, apg is
only using this to generate *seeds* for its own built-in PRNG!

The package includes apgd. I'm not sure why anyone needs a password
generation daemon (especially one that doesn't use an encrypted
connection), but if you want to run it via inetd, add this to your
/etc/inetd.conf, then "killall -HUP inetd":

pwdgen stream tcp nowait root /usr/sbin/apgd apgd