Why is a PBKDF needed?
In my CLI password manager setup, the key is on hardware token (OpenPGP card, in my case a Yubikey), and I don't need a password when using the software. That's a conscious choice: in my threat model someone stealing both the Yubikey and the password database is not so important it's worth having a password. But that's me. Someone else could have one in their setup.
Lars Wirzenius
npub169…98vpx
2026-02-24 04:53:27 UTC
in reply to nevent1q…0qpw
Author Public Key
npub169875d5xru6ur9l65a2f6ahcyznn3yejclcqwu4qla4ku9mw7k0qa98vpxSeen on
wss://relay.momostr.pinkPublished at
2026-02-24 04:53:27 UTCEvent JSON
{
"id": "2ecb7fd368546413d28be79ee7dc33e5c4e2292b59eaa96fcf38c174f930f0d0",
"pubkey": "d14fea36861f35c197faa7549d76f820a7389332c7f00772a0ff6b6e176ef59e",
"created_at": 1771908807,
"kind": 1,
"tags": [
[
"proxy",
"https://toot.liw.fi/@liw/116123815624358201",
"web"
],
[
"p",
"d14fea36861f35c197faa7549d76f820a7389332c7f00772a0ff6b6e176ef59e"
],
[
"p",
"fbcb5cab0686eca2a271f85b9910e6d4981f6e93b442a04709a5bd4eea702024"
],
[
"p",
"582a41c6eca3d12c80acd248a7c8f3070c83c859b9ac1739cbecc074cf09a747"
],
[
"p",
"8ab44a84fb757fea3c983e68a9bcc8e331fa49ed99cfcfd06a4499d542eae93c"
],
[
"e",
"af2dad83a088bfccce4e39c9a4e52e3930c94d8f5d4d743523995814d71d4933",
"",
"root",
"582a41c6eca3d12c80acd248a7c8f3070c83c859b9ac1739cbecc074cf09a747"
],
[
"e",
"6d9e35f005fef0805c868327f2b5d20a6f87946e4c3f3b7182662f5e6b435c84",
"",
"reply",
"8ab44a84fb757fea3c983e68a9bcc8e331fa49ed99cfcfd06a4499d542eae93c"
],
[
"proxy",
"https://toot.liw.fi/users/liw/statuses/116123815624358201",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://toot.liw.fi/users/liw/statuses/116123815624358201",
"pink.momostr"
],
[
"-"
]
],
"content": "Why is a PBKDF needed?\n\nIn my CLI password manager setup, the key is on hardware token (OpenPGP card, in my case a Yubikey), and I don't need a password when using the software. That's a conscious choice: in my threat model someone stealing both the Yubikey and the password database is not so important it's worth having a password. But that's me. Someone else could have one in their setup.",
"sig": "4c75d0a0f6fdb4c34fd691d545e80c146856159066290518ca181d8791cb7e5e3fc73e229f2cc47d9a87fabdf4a0d72bc89b26c13bfaff54a4673a66c35b7e4d"
}