• bjorney
    link
    fedilink
    arrow-up
    1
    arrow-down
    1
    ·
    edit-2
    4 months ago

    “can you string words to form a valid RSA key”

    “Yes this is the most secure way to do it”

    “No, it’s not when there is a fixed byte length”

    -> where we are now

    • sus@programming.dev
      link
      fedilink
      arrow-up
      2
      ·
      4 months ago

      the direct chain I can see is

      “can you string words to form a valid RSA key”

      “I would hope so, [xkcd about password strength]”

      “words are the least secure way to generate random bytes”

      “Good luck remembering random bytes. That infographic is about memorable passwords.”

      “You memorize your RSA keys?”

      so between comments 2 and 3 and 4 I’d say it soundly went past the handcrafted RSA key stuff.