I’ve released today the new version of
spass, a tool that creates cryptographically strong passwords and passphrases by generating random bits from your sound card.
In the user facing side,
spass can now create passphrases as long as passwords. The words for the passphrases are chosen out of a list of 8192 words which means each word adds 13 bits of entropy to the passphrase.
spass can now use one of three audio backends (the old version could only use OSS):
- Advanced Linux Sound Architecture (ALSA)
- Open Sound System (OSS)
The PortAudio support will hopefully make it easy to port
spass to other platforms as well (such as Windows). The random number generator got overhauled and now there is an unbiasing step before applying the hash function. This should help getting consistent results in terms of entropy. In the backstage I’ve migrated the project from autotools to
You can find more information, as well as both source and binary packages in https://github.com/guyru/spass.