I don’t think it’s primarily about the algorithm or “Public Enlightenment and Propaganda” but instead about data and company ownership. Currently the US and EU are far closer allies with each other than with china. Services that are owned/controlled by their countries are therefore prioritized, and competing services from non-ally countries are way more scrutinized.
The article is almost 70 days old, and Clemens Fruhwirth, one of the creators of LUKS, has responded:
A random keyboard typable character gives you around 6 bits of entropy. 20 of those give you 120 bits of entropy. Even without a KDF, brute-forcing this key space is infeasible with today’s hardware. Even with PBKDF2, a 13-character password should be enough to keep your data secure for your lifetime.[1]
It is much more likely that there was some security failure in the linked case other than PBKDF2. That said, I support the upgrade to Argon2.
[1] In my thesis on LUKS, Chapter 5.3 Passwords from entropy weak sources anticipates the creation of specialized hardware for breaking PBKDF2. The “13 characters should be enough” advice is found on Page 86, Table 5.4, top left cell. It gives a 78-bit recommendation (=13 characters) in the worst-case scenario, which is Moore’s law continues to double the attacker speed every 2 years.
I am just wondering what matrix instances are recommended. I would rather not use the main matrix.org instance, but I still want something with good up-time, updated software and that is privacy respecting....
Why Do You Pirate Music?
I recently set up Sonarr and Radarr on my home server and I’m loving it....
Test image upload (discuss.tchncs.de)
Image attached
Test image embed
Image in message body: https://discuss.tchncs.de/pictrs/image/d7bea9eb-7efb-4f98-aaf4-34fd6e8d573c.jpeg...
Test post (cdn.biogutterne.gay)
Testing URLs
There's no place like `[::1]`
I bet all those people that got tattoos of “There’s no place like 127.0.0.1” are so embarrassed now that IPv6 has been adopted globally.
ByteDance prefers TikTok shutdown in US if legal options fail, sources say (www.reuters.com)
Apple And Google Are Sending Your Push Notifications to The Government (odysee.com)
Ransomware Hackers Steal Millions From Vegas Casinos (odysee.com)
cross-posted from: discuss.tchncs.de/post/3473050...
Tesla Full Self Driving Is Now 'End-To-End AI' (odysee.com)
The Fall of Linus Tech Tips (odysee.com)
SUSE To Be Taken Private By Its Largest Shareholder (www.phoronix.com)
The Yandex Leak: How a Russian Search Giant Uses Consumer Data (www.confiant.com)
cross-posted from: discuss.tchncs.de/post/1680837...
PSA: Upgrade your LUKS PBKDF to Argon2id! (tails.boum.org)
TIL the French government may have broken encryption on a LUKS-encrypted laptop with a "greater than 20 character" password in April 2023....
Giphy test (media.giphy.com)
A simple test
GIF test from Tenor (tenor.com)
Test again :(
Recommended Matrix instances?
I am just wondering what matrix instances are recommended. I would rather not use the main matrix.org instance, but I still want something with good up-time, updated software and that is privacy respecting....