Conversation

Humans are bad at coming up with passwords. How much would y'all hate it if the age CLI didn't support custom passwords, and always generated a secure passphrase? (The API and --decrypt would still support custom passwords.)

Sure, autogenerate it!
58.7%
Hell no, I need custom
25.1%
age? passphrases? huh?
16.2%

881 votesFinal results

Replying to

I think you can find a way to steer a good default without breaking things (including m17n!) for users with legitimate need.

Replying to

Right, I am trying to understand what the legitimate needs are, so I can make sure they are addressed, because I have not encountered them myself.

Replying to

I think m17n is the biggest show stopper. In 2021 no software should be reverting to "use one of the big imperial languages or fuck you". (Note: UI in your language & ability to have data in your language are very different levels here.)

Replying to

and

BIP39 seed phases support localization. There aren't word lists for each language though. The word lists need to be carefully crafted. You can see an example of the thought that has to go into it at github.com/bitcoin/bips/p. Can't really add a language without being very fluent.

github.com

Add Portuguese wordlist to BIP39 by sabotag3x · Pull Request #998 · bitcoin/bips

The Portuguese wordlist was carefully checked manually by Portuguese and Brazilians in order to achieve a high level of quality. All the words are commonly used in both countries. In addition the P...

2:45 PM · Jun 2, 2021Twitter Web App

Replying to

and

Can see the currently supported languages in github.com/bitcoin/bips/t. It's mostly just a natural result of those being the most used languages. Czech is probably there because Trezor is a Czech company. The others are there because they're the most spoken languages.

Replying to

and

I find it a bit funny that Czech is there but German isn't but it's just the way open source works. I don't know what the equivalent would be to "first 4 letters are unambiguous" for Chinese, Korean and Japanese but I'm sure they have that and the other important properties.

Replying to

and

Right. The problem is that there are hundreds if not thousands of languages that will never be added, but where users are perfectly free to make their own passphrases thanks to Unicode as long as you let them.

Replying to

and

They could make their own word lists and share them instead of directly making user-generated passphrases if the software supported using your own word list in the standard format like this: github.com/bitcoin/bips/b.

github.com

bips/chinese_simplified.txt at master · bitcoin/bips

Bitcoin Improvement Proposals. Contribute to bitcoin/bips development by creating an account on GitHub.

Show replies