[messaging] Peerio
Mike Hearn
mike at plan99.net
Wed Jan 14 15:02:22 PST 2015
My big question (sorry Nadim, if this has been addressed before as part of
the MiniLock discussions) is what stops passphrases being brute forced. It
seems from the spec that the passphrase == private key and public key is
then derived from that, in the usual ECC manner.
The Bitcoin community has learned the hard way that there are no secure
passphrases. Example:
https://www.reddit.com/r/Bitcoin/comments/1ptuf3/brain_wallet_disaster/
Just lost 4 BTC out of a hacked brain wallet. The pass phrase was a line
from an obscure poem in *Afrikaans*. Somebody out there has a *really*
comprehensive
dictionary attack program running.
Fuck. I thought I had my big-boy pants on.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://moderncrypto.org/mail-archive/messaging/attachments/20150115/c12b212d/attachment.html>
More information about the Messaging
mailing list