Crypt Dictionary Attacks

I'm about to make my first crypt mount and I need some help understanding password and salt. My understanding is that a salt makes dictionary attacks on the password more difficult, but if you use a non-random salt (a pass phrase), does that make attacks just as easy?

Salts are generally public it is traditional to use a randomly generated string.

However rclone doesn't make the salt public - so it effectively becomes part of the password.

I understand. I decided that it pointless having a memorable password if I had a randomly generated salt (which I would have to memorise or keep a copy somewhere). I ended up going for a randomly generated single password.

1 Like

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.