On Thu, 24 Nov 2005, in the Usenet newsgroup comp.os.linux.security, in article
<pan.2005.11.24.16.57.59.705738@somewhere.com>, John wrote:

>Just a suggestion - check out "apg".

First hit at google for the words 'apg password generator' turns it up.
Doesn't look as if it's being actively developed (last release appears
to be September 2003), but I suspect that there isn't that much more
that can be developed. If you are really hard-nosed about password
security, there might be a minor disadvantage of the regularity of the
construct of a pronounceable word (often, alternating consonant - vowel
pattern), but the whole idea here is that this type of tool significantly
increases the range of "usable" words.

>You can combine 2 or more of these into a password that is pretty good and
>also easy to remember.

which has always been a good method even with dictionary words

>Or separate the pronouncable components with punctuation characters for
>more complexity.

Even better - again, some password monitoring tools such as the module
included in PAM can be set to require mixed case, a digit or two, and
punctuation, in addition to a minimum length.

Old guy