Comments (7)
I don't know about that and therefore this is no clarification whatsoever. But maybe it provides some intel?
I noticed this note in the README of kdf dir:
Base64 vs hexencode
-------------------
While base64 is easier to use (shell command, more compact), pbkdf2 use hex
in its specifications.
This could be solved with an option (-x for hex, defaults to base64)
And I interpret it that is was there to be more following the spec.
Thinking about the age of gtomb and the argument, that pbkdf
is kinda dated, one may look into adopting argon2
if there is a revisit of gtomb?
Edit: To clarify further: Point being that argon2i
is seen as superior and the chance is high it is available from the distribution repos or even already installed.
from tomb.
Thanks for checking that. I didn't wanted to state something just relying in what I remember, but can confirm that AFAIK was never used.
from tomb.
beware the addition of argon2 affects also the core tomb script, because it requires a new option in the header (first line of key file) stating argon2 and parameters.
from tomb.
I forgot that I did that 😅 perhaps because I am not yet using it in my workflow, just planning to 😅😅
from tomb.
Reopened it.
I agree with you. Argon2i is more up to date.
But is tomb-kdb-hexencode
still used in the main code? Or it just use Base64 as default? My PR #478 removed tomb-kdb-hexencode
check to use KDF to create a key with gtomb
.
Exploring the extras/kdf-keys
and tomb
(current and old versions) seems that tomb-kdb-hexencode
was NEVER used. Apparently pbkdf2 has it's own hex encode source-code inside tomb-kdf-pbkdf2*
.
from tomb.
Thank you @jaromil and @Narrat for all the help. I will update extras/gtomb
to include argon2
as an alternative to pbkdf2
.
from tomb.
beware the addition of argon2 affects also the core tomb script, because it requires a new option in the header (first line of key file) stating argon2 and parameters.
Shouldn't this be covered already? As tomb got argon2 support with #432 ?
from tomb.
Related Issues (20)
- Duplicate password prompt when `udiskie` was installed. HOT 1
- tomb index / search and mlocate HOT 2
- portable tomb on osx with fuse-t HOT 1
- How to properly avoid dozens of password prompt when using `--sudo doas`? HOT 10
- Privilege Escalation HOT 9
- Could you add Portuguese (Brazilian) to Weblate for localization? HOT 1
- cloakify support: update to python3 HOT 4
- Translations help - perl or shell script? HOT 2
- tomb --version and tomb-kdb-pbkdf2 HOT 7
- I got error message "is_valid_tomb:local:57: not valid in this context: " when I ran the command "tomb lock -k secrets.tomb.key secrets.tomb" for testing. HOT 3
- Forging a key fails at password prompt HOT 3
- File tomb, function lock_tomb_with_key(): Wrong comparison operator used to check a tomb's size
- File doc/tomb.1: .nf in lines listing supported file systems breaks the format of subsequent paragraphs
- are there alternatives to steghide? HOT 2
- Tomb fails if sudo is not installed HOT 5
- Why is a password requested if the key is encrypted with gpg? HOT 1
- Warnings not being printed HOT 2
- tomb ps output is broken HOT 2
- Tomb not working on KDE Plasma Fedora HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from tomb.