-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathsecure.passwords.rme
More file actions
8252 lines (8150 loc) · 116 KB
/
secure.passwords.rme
File metadata and controls
8252 lines (8150 loc) · 116 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
991
992
993
994
995
996
997
998
999
1000
... . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ....
.. ..
.. Passwords ..
.. ..
.... . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ...
. _ . ~ . _ . ~ . _ . ~ . _ . ~ . _ . ++++ . _ . ~ . _ . ~ . _ . ~ . _ . ~ . _ .
~~> REQUIREMENT NOTATION AND CONVENTIONS
=-=-=-=-=-=-=-=-=-==-=-=-=-=-=-=-=-=-=-=
The terms "SHALL" and "SHALL NOT" indicate requirements to be followed
strictly in order to conform to the publication and from which no derivation
is permitted.
The terms "SHOULD" and "SHOULD NOT" indicate that among several
possibilities one is recommended as particularly suitable, without mentioning
or excluding others, or that a certain course of action is preferred but not
necessarily required, or that (in the negative form) a certain possibility
or course of action is discouraged but not prohibited.
The terms "MAY" and "NEED NOT" indicate a course of action permissible
within the limits of the publication.
The terms "CAN" and "CANNOT" indicate a possibility or capability, whether
material, physical or casual or, in the negative, the absence of that
possibility or capability.
. _ . ~ . _ . ~ . _ . ~ . _ . ~ . _ . ++++ . _ . ~ . _ . ~ . _ . ~ . _ . ~ . _ .
*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*++*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*
. _ . ~ . _ . ~ . _ . ~ . _ . ~ . _ . ++++ . _ . ~ . _ . ~ . _ . ~ . _ . ~ . _ .
~~> NATIONAL INSTITUTE OF STANDARDS AND TECHNOLOGY (NIST) PASSWORD GUIDELINES
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
In June 2017, the United States National Institute of Standards and
Technology issued a new revision of their digital authentication guidelines,
NIST SP 800-63B-3 (https://doi.org/10.6028/NIST.SP.800-63b), which dictates:
* passwords MUST be at least 8 characters in length if chosen by subscriber.
* password verifier systems SHOULD permit subscriber-chosen passwords at
least 64 characters in length.
* all printing ASCII characters as well as the space character SHOULD be
acceptable in passwords. Unicode chars also permitted.
* verifiers MAY replace multiple consecutive space characters with a single
space character prior to verification, provided that the result is at least
8 characters in length, but trunctation of the password SHALL NOT be done.
* verifiers SHOULD NOT impose other composition rules (e.g. requiring mixtures
of different character types or prohibiting consecutively repeated chars).
* verifiers SHOULD NOT require passwords to be changed arbitrarily
(i.e. periodically). However, verifiers SHALL force a change if there is
evidence of compromise of the password.
* verifiers SHALL NOT permit the subscriber to store a "hint" that is
accessible to an underauthenticated claimant, and verifiers SHALL NOT
prompt subscribers to use specific types of information (e.g. "What was the
name of your first pet?") when choosing passwords.
* when processing requests to establish or change passwords, verifiers SHALL
compare the prospective passwords against a list that contains values known
to be commonly-used, expected, or compromised. The list MAY include, but is
not limited to:
> passwords obtained from previous breach corpuses
> dictionary words
> passwords consisting of repetitive or sequential characters
(e.g. 'aaaaaa', '1234abcd', 'password123')
> context-specific words, such as the name of the service,
the username, and derivatives thereof
If the chosen password is found in the list, the verifier SHALL advise the
subscriber that they need to select a different password and provide the
reason for rejection.
* verifiers SHOULD offer guidance to the subscriber, such as a password-
strength meter, to assist the user in choosing a strong password. This is
particularly important following the rejection of a password on the above
list as it discourages trivial modification of blacklisted (and likely
very weak) passwords.
* verifiers SHALL implement a rate-limiting mechanism that effectively limits
the number of failed authentication attempts that can be made on the
subscriber's account.
* verifiers SHALL store passwords in a form that is resistant to offline
attacks. passwords SHALL be salted and hashed using a suitable one-way
key derivation function. key derivation functions take a password, a salt,
and a cost factor as inputs then generates a password hash. their purpose
is to make each password guessing trial by an attacker who has obtained the
password hash file expensive and therefore the cost of a guessing attack
high or prohibitive.
(NIST includes a rationale for the new guidelines in Appendix A.)
. _ . ~ . _ . ~ . _ . ~ . _ . ~ . _ . ++++ . _ . ~ . _ . ~ . _ . ~ . _ . ~ . _ .
*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*++*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*
. _ . ~ . _ . ~ . _ . ~ . _ . ~ . _ . ++++ . _ . ~ . _ . ~ . _ . ~ . _ . ~ . _ .
~~> PASSWORD LENGTH AND FORMATION
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Eight characters is a typical minimum limit for most password policies,
but is almost always not enough. Longer passwords are generally more secure,
but some systems impose a max length for compatibility with legacy systems.
Some typical password requirements:
- the use of both upper-case and lower-case letters (case sensitivity)
- inclusion of one or more numerical digits
- inclusion of special characters, such as @, #, $, etc.
(the space character adds little complexion to a password but should
be allowed to make passphrases easier to remember as well as make it
much more difficult for an attacker to successfully steal a password
while looking over the shoulder of the user- the thumb doesn't move when
depressing the spacebar and is also partially hidden by the body and
hand of the user.)
- prohibition of words found in a password blacklist
- prohibition of words found in the user's personal information
- prohibition of use of company name or an abbreviation
- prohibition of passwords that match the format of calendar dates,
license plate numbers, telephone numbers, or other common numbers
. _ . ~ . _ . ~ . _ . ~ . _ . ~ . _ . ++++ . _ . ~ . _ . ~ . _ . ~ . _ . ~ . _ .
*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*++*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*
. _ . ~ . _ . ~ . _ . ~ . _ . ~ . _ . ++++ . _ . ~ . _ . ~ . _ . ~ . _ . ~ . _ .
~~> THE DICEWARE PASSPHRASE METHOD
=-=-=-=-=-=-=-=-==-=-=-=-=-=-=-=-=
An easy method that offers a strong and easy to remember passphrase.
Passphrases differ from passwords only in length. Passwords are usually
short, six to ten characters. Short passwords are OK for logging onto computer
systems that are programmed to detect multiple incorrect guesses and to
protect the stored passwords properly, but they are not safe for use with
encryption systems. Passphrases are usually much longer -- typically 25 to 64
characters (including spaces). Their greater length makes passphrases more
secure.
Picking a good passphrase is one of the most important things you can do to
preserve the privacy of your computer data and e-mail messages.
A passphrase should be:
=> known only to you
=> long enough to be secure
=> hard to guess -- even by someone who knows you well
=> easy for you to remember
=> easy for you to type accurately
Diceware(tm) is a method for picking passphrases that uses dice to select
words at random from a special list called the Diceware Word List. Each word
in the list is preceded by a five digit number. All the digits are between
one and six, allowing you to use the outcomes of five dice rolls to select a
word from the list. The total number of words to use varies.
Once all words have been rolled, combine them from left to right to form
the passphrase. The result is a newly generated passphrase.
. _ . ~ . _ . ~ . _ . ~ . _ . ~ . _ . ++++ . _ . ~ . _ . ~ . _ . ~ . _ . ~ . _ .
*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*++*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*
. _ . ~ . _ . ~ . _ . ~ . _ . ~ . _ . ++++ . _ . ~ . _ . ~ . _ . ~ . _ . ~ . _ .
~~> ADDITIONAL INFO & EXTRAS
=-=-=-=-=-=-=~~=-=-=-=-=-=-=
** COMPLEXITY
-------------
Assuming the Diceware passphrase generation method is followed correctly,
each word in the passphrase yields 12.9 bits of entropy. Thus, a five-word
passphrase has an entropy of at least 64.6 bits; six words would have at
least 77.5 bits; seven words 90.4 bits; eight words 103.2 bits.
Inserting a letter at random adds about 10 bits of entropy.
At time of writing, which is Tuesday September 26, 2017, it is recommended
to use six words for most users, or five words with one extra character
added at random.
The folks at Diceware seem to believe that five words (64.6 bE) are
breakable with a thousand or so machines with high-end graphics processors,
and are vulnerable to any person or organization with access to a botnet.
Six words (77.5 bE) MAY be breakable by an organization with vast amounts
of resources, such as a large country's security agency.
Seven words (90.4 bE) are unbreakable with any publicly known technology,
but may be within the range of large organizations by around 2030.
Eight words (103 bE) should be completely secure through 2050.
** ENTROPY
=-=-==-=-=
To get a rough estimation of the amount of entropy in a given passphrase,
use the following algorithm to calculate the entropy (in bits):
log_2(N) - M multiplied by the log(base 2) of N
where log_2(N) is also equivalent to
log(N) / log(2) - log(base 10) of N divided by log(base 10) of 2
and can be deciphered as: the entropy of a system containing N number of
probabilities, where each possibility is equally likely to be chosen.
Let N equal the total number of possible passphrases in a given system,
such as Diceware. Let M be either:(1) the number of symbols (or characters)
that make up any given passphrase in the above described system, OR (2) the
number of words any given passphrase. For case (1), N would be set to the
number of words in the wordlist - Diceware's wordlist has 7776 words. For
case (2), N would be set to the number of characters possible for each
symbol - a rough approximation is all the typeable characters in the ASCII
system, which I've estimated to be 95 characters.
So, for a passphrase with 15 characters, with each character selected from
the 7-bit ASCII printable character set, the entropy of that passphrase is
15*log2(95)=98.547834 bits. For a passphrase generated using Diceware's word
list with 6 words, the entropy is 6*log2(7776)=77.54887 bits.
................................................................................
................................................................................
** ADDING SPECIAL CHARACTERS
=-=-=-=-=-=-=--=-=-=-=-=-=-=
For extra security without adding another word, insert one special char
or digit chosen at random into your passphrase. Here is how to do it in a
secure manner:
1. roll one die to choose a word in your passphrase. for passphrases which
contain 7 or more words, roll twice and sum the result. then use the
modulo operation to map the sum to a word in your passphrase.
i.e. the number of words in your passphrase is the DIVIDEND and the sum
of the two dice rolls is the DIVISOR.
DIVIDEND modulo DIVISOR == word in passphrase to modify
e.g. 8 word passphrase <--> DIVIDEND; dice rolls 6 + 5 = 11 <--> DIVISOR
8 modulo 11 == 3, the third word in the passphrase is selected.
2. roll again to select a letter in the chosen word. Use the modulo
approximation described in step 1 if the chosen word has more than six
letters. the modulo approximation can be generalized to work with any
desired length. The desired length is always the DIVIDEND; the DIVISOR is
obtained by summing distinct dice rolls together where the number of dice
rolls must not exceed the minimum number of dice rolls needed to obtain a
maximum sum greater than or equal to the DIVIDEND.
e.g. DIVIDEND is 10, therefore the maximum number of dice rolls is two
times, because the greatest possible sum in two dice rolls, which is 12,
is greater than the DIVIDEND == 10.
3. finally, roll a third and fourth time to select the special char to add
from the following table:
Third Roll
1 2 3 4 5 6
F 1 ~ ! # $ % ^
o 2 & * ( ) - =
u 3 + [ ] \ { } Inserting a letter at random
r 4 : ; " ' < > adds about 10 bits of entropy.
t 5 ? / 0 1 2 3
h 6 4 5 6 7 8 9
4. add the selected character either before or after the selected letter
chosen in step 2.
................................................................................
................................................................................
** CREATE RANDOM CHARACTER STRINGS
=-=-=-=-=-=-=-=--=-=-=-=-=-=-=-=-=
For maximum security, use all 95 printable characters in the 7-bit ASCII
set. Using the table below, roll a die three times (or three dice) for each
character.
If first roll = 1 or 2 3 or 4 5 or 6
Second Roll Second Roll Second Roll
1 2 3 4 5 6 1 2 3 4 5 6 1 2 3 4 5 6
T 1 A B C D E F a b c d e f ! @ # $ % ^
h 2 G H I J K L g h i j k l & * ( ) - =
i 3 M N O P Q R m n o p q r + [ ] { } \
r 4 S T U V W X s t u v w x | ` ; : ' "
d 5 Y Z 0 1 2 3 y z ~ _ sp < > / ? . ,
6 4 5 6 7 8 9
Note: Redo the roll entirely (roll 3 dice) whenever you get a blank. The
table entry 'sp' means a space char. Redo the roll entirely if spaces
are not desired.
Each random character adds 6.55 bits of entropy.
................................................................................
................................................................................
** CREATE RANDOM STRINGS OF LETTERS AND NUMBERS
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Roll a die twice or roll two dice for each char, then consult the table.
First Roll
1 2 3 4 5 6
S 1 A B C D E F
e 2 G H I J K L
c 3 M N O P Q R Each random character
o 4 S T U V W X adds 5.17 bits of entropy.
n 5 Y Z 0 1 2 3
d 6 4 5 6 7 8 9
If both lower and upper case letters are desired, there are two ways of
going about it. The first is to use the first two tables above (in the
section "CREATE RANDOM CHARACTER STRINGS USING DICE") which cover both lower
and upper case letters and numbers. For the first roll, interpret it either
as (1) 1 or 2 or 3 - use the first table (with uppercase letters and numbers)
and 4 or 5 or 6 - use the second table (with lowercase letters), OR (2) odd
rolls use the first table and even rolls use the second (or vice versa).
................................................................................
................................................................................
** CREATE RANDOM DECIMAL NUMBERS
=-=-=-=-=-=-=-=--=-=-=-=-=-=-=-=
Roll a die twice, or two dice, for each digit and consult the table.
First Roll
1 2 3 4 5 6
S 1 1 2 3 4 5 * Each random digit adds
e 2 6 7 8 9 0 * 3.3 bits of entropy.
c 3 1 2 3 4 5 *
o 4 6 7 8 9 0 *
n 5 1 2 3 4 5 * Roll the first die again for *.
d 6 6 7 8 9 0 *
Note: A quicker method without the table: Roll a die until you get a number that
isn't 6, then roll again. If the second roll is even, add 5 to the number
from the first roll. Treat a 10 as 0.
................................................................................
................................................................................
** CREATE HEXADECIMAL NUMBERS
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Roll a die twice, or two dice, for each hex digit and consult the table.
First Roll
1 2 3 4 5 6
S 1 0 1 2 3 4 5 Each random hex digit
e 2 6 7 8 9 A B adds 4 bits of entropy.
c 3 C D E F 0 1
o 4 2 3 4 5 6 7 Roll the di[c]e again
n 5 8 9 A B C D whenever you get a *.
d 6 E F * * * *
................................................................................
................................................................................
** CREATE RANDOM SPECIAL CHARACTERS
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Roll the dice twice and consult the table.
First Roll
1 2 3 4 5 6
S 1 ! @ # $ % ^ Each random digit adds
e 2 & * ( ) - = 5.17 bits of entropy.
c 3 + [ ] { } \
o 4 | ` ; : ' " If you only want a special char,
n 5 < > / ? . , re-roll whenever you get a digit.
d 6 ~ _ 3 5 7 9
................................................................................
................................................................................
** SELECT A RANDOM CHAR IN A WORD
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
This is for adding/replacing a random character into a passphrase for added
security. Pick the column in the table below that corresponds to the number
of chars in the chosen word. Then roll one die and look up the number you get
on the left hand side of the table. Insert the random character after the
selected letter. Zero means put the random character at the beginning.
Number of chars in word
D 2 3 4 5 6
i
e 1 1 1 1 1 1
2 2 2 2 2 2
R 3 0 3 3 3 3 Re-roll whenever
o 4 * 0 4 4 4 you get a *.
l 5 * * 0 5 5
l 6 * * * 0 6
................................................................................
................................................................................
** USE COINS INSTEAD OF DICE
=-=-=-=-=-=-=--=-=-=-=-=-=-=
For when there aren't any dice available, use three coins to simulate a die
roll. Shake them in a cup (make sure to shake along all 3 axises) and dump
them on a surface. Consult the following table. (H = Heads, T = Tails)
This example uses a penny, nickel, and dime, but replace them with any 3 coins.
Results of Coin Toss
Penny Nickel Dime
D 1 T T T
i 2 T T H
e 3 T H T
4 T H H Flip all coins again
R 5 H T T whenever you get a *.
o 6 H T H
l * H H T
l * H H H
................................................................................
................................................................................
** THE LAST RESORT
=-=-=-=-==-=-=-=-=
When without the tables above to generate randomly selected passphrases, it
is still possible to ensure entropy while generating a passphrase. A major
pain, but still doable. You can use coins and a standard computer keyboard in
lieu of the tables.
You will need four identical coins, which will be used to generate binary
numbers; for each coin flip, Heads = 1 and Tails = 0. Use a cup or some small
cointainer to shake the coins around. Lay them out and arrange them in a line
from left to right.
Start with the right-most coin: if it is heads, write down a 1; if it is
tails, write down a 0. If the next is heads write down a 2, if tails 0. If
the next is heads write 4, if tails 0. If the fourth (and final) coin is heads
write down an 8, otherwise 0 for tails. Take the sum of the four numbers.
Follow these steps for each character:
1. Flip two coins to select a row on the keyboard, bottom row = 0 (TT),
top row = 3 (HH)
2. Flip four coins to form a number from 0 to 15. Use this number to select
a key in the selected row, starting from the left and counting the first
character as zero. If the number you get is more than the number of keys
in the row, flip the coins again. For maximum randomness, you should
select a new row as well, but the bias introduced if you use the
previously selected row is not that great.
3. Flip one coin to determine if the character will be uppercase (H) or
lowercase (T).
An example.
1st flip: H T - select row 2 (QWERTYUIOP...)
2nd flip: H T T H - select key number 9 (P)
3rd flip: T - final character is "p"
. _ . ~ . _ . ~ . _ . ~ . _ . ~ . _ . ++++ . _ . ~ . _ . ~ . _ . ~ . _ . ~ . _ .
*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*++*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*.*
. _ . ~ . _ . ~ . _ . ~ . _ . ~ . _ . ++++ . _ . ~ . _ . ~ . _ . ~ . _ . ~ . _ .
~~> THE DICEWARE LIST (AS OF 2017.09.26)
=-=-=-=-=-=-=-=-=-==-=-=-=-=-=-=-=-=-=-=
-----BEGIN PGP SIGNED MESSAGE-----
11111 a
11112 a&p
11113 a's
11114 aa
11115 aaa
11116 aaaa
11121 aaron
11122 ab
11123 aba
11124 ababa
11125 aback
11126 abase
11131 abash
11132 abate
11133 abbas
11134 abbe
11135 abbey
11136 abbot
11141 abbott
11142 abc
11143 abe
11144 abed
11145 abel
11146 abet
11151 abide
11152 abject
11153 ablaze
11154 able
11155 abner
11156 abo
11161 abode
11162 abort
11163 about
11164 above
11165 abrade
11166 abram
11211 absorb
11212 abuse
11213 abut
11214 abyss
11215 ac
11216 acadia
11221 accra
11222 accrue
11223 ace
11224 acetic
11225 ache
11226 acid
11231 acidic
11232 acm
11233 acme
11234 acorn
11235 acre
11236 acrid
11241 act
11242 acton
11243 actor
11244 acts
11245 acuity
11246 acute
11251 ad
11252 ada
11253 adage
11254 adagio
11255 adair
11256 adam
11261 adams
11262 adapt
11263 add
11264 added
11265 addict
11266 addis
11311 addle
11312 adele
11313 aden
11314 adept
11315 adieu
11316 adjust
11321 adler
11322 admit
11323 admix
11324 ado
11325 adobe
11326 adonis
11331 adopt
11332 adore
11333 adorn
11334 adult
11335 advent
11336 advert
11341 advise
11342 ae
11343 aegis
11344 aeneid
11345 af
11346 afar
11351 affair
11352 affine
11353 affix
11354 afire
11355 afoot
11356 afraid
11361 africa
11362 afro
11363 aft
11364 ag
11365 again
11366 agate
11411 agave
11412 age
11413 agee
11414 agenda
11415 agent
11416 agile
11421 aging
11422 agnes
11423 agnew
11424 ago
11425 agone
11426 agony
11431 agree
11432 ague
11433 agway
11434 ah
11435 ahead
11436 ahem
11441 ahoy
11442 ai
11443 aid
11444 aida
11445 aide
11446 aides
11451 aiken
11452 ail
11453 aile
11454 aim
11455 ain't
11456 ainu
11461 air
11462 aires
11463 airman
11464 airway
11465 airy
11466 aisle
11511 aj
11512 ajar
11513 ajax
11514 ak
11515 akers
11516 akin
11521 akron
11522 al
11523 ala
11524 alai
11525 alamo
11526 alan
11531 alarm
11532 alaska
11533 alb
11534 alba
11535 album
11536 alcoa
11541 alden
11542 alder
11543 ale
11544 alec
11545 aleck
11546 aleph
11551 alert
11552 alex
11553 alexei
11554 alga
11555 algae
11556 algal
11561 alger
11562 algol
11563 ali
11564 alia
11565 alias
11566 alibi
11611 alice
11612 alien
11613 alight
11614 align
11615 alike
11616 alive
11621 all
11622 allah
11623 allan
11624 allay
11625 allen
11626 alley
11631 allied
11632 allis
11633 allot
11634 allow
11635 alloy
11636 allure
11641 ally
11642 allyl
11643 allyn
11644 alma
11645 almost
11646 aloe
11651 aloft
11652 aloha
11653 alone
11654 along
11655 aloof
11656 aloud
11661 alp
11662 alpha
11663 alps
11664 also
11665 alsop
11666 altair
12111 altar
12112 alter
12113 alto
12114 alton
12115 alum
12116 alumni
12121 alva
12122 alvin
12123 alway
12124 am
12125 ama
12126 amass
12131 amaze
12132 amber
12133 amble
12134 ambush
12135 amen
12136 amend
12141 ames
12142 ami
12143 amid
12144 amide
12145 amigo
12146 amino
12151 amiss
12152 amity
12153 amman
12154 ammo
12155 amoco
12156 amok
12161 among
12162 amort
12163 amos
12164 amp
12165 ampere
12166 ampex
12211 ample
12212 amply
12213 amra
12214 amulet
12215 amuse
12216 amy
12221 an
12222 ana
12223 and
12224 andes
12225 andre
12226 andrew
12231 andy
12232 anent
12233 anew
12234 angel
12235 angelo
12236 anger
12241 angie
12242 angle
12243 anglo
12244 angola
12245 angry
12246 angst
12251 angus
12252 ani
12253 anion
12254 anise
12255 anita
12256 ankle
12261 ann
12262 anna
12263 annal
12264 anne
12265 annex
12266 annie
12311 annoy
12312 annul
12313 annuli
12314 annum
12315 anode
12316 ansi
12321 answer
12322 ant
12323 ante
12324 anti
12325 antic
12326 anton
12331 anus
12332 anvil
12333 any
12334 anyhow
12335 anyway
12336 ao
12341 aok
12342 aorta
12343 ap
12344 apart
12345 apathy
12346 ape
12351 apex
12352 aphid
12353 aplomb
12354 appeal
12355 append
12356 apple
12361 apply
12362 april
12363 apron
12364 apse
12365 apt
12366 aq
12411 aqua
12412 ar
12413 arab
12414 araby
12415 arc
12416 arcana
12421 arch
12422 archer
12423 arden
12424 ardent
12425 are
12426 area
12431 arena
12432 ares
12433 argive
12434 argo
12435 argon
12436 argot
12441 argue
12442 argus
12443 arhat
12444 arid
12445 aries
12446 arise
12451 ark
12452 arlen
12453 arlene
12454 arm
12455 armco
12456 army
12461 arnold
12462 aroma
12463 arose
12464 arpa
12465 array
12466 arrear
12511 arrow
12512 arson
12513 art
12514 artery
12515 arthur
12516 artie
12521 arty
12522 aruba
12523 arum
12524 aryl
12525 as
12526 ascend
12531 ash
12532 ashen
12533 asher
12534 ashley
12535 ashy
12536 asia
12541 aside
12542 ask
12543 askew
12544 asleep
12545 aspen
12546 aspire
12551 ass
12552 assai
12553 assam
12554 assay
12555 asset
12556 assort
12561 assure
12562 aster
12563 astm
12564 astor
12565 astral
12566 at
12611 at&t
12612 ate
12613 athens
12614 atlas
12615 atom
12616 atomic
12621 atone
12622 atop
12623 attic
12624 attire
12625 au
12626 aubrey
12631 audio
12632 audit
12633 aug
12634 auger
12635 augur
12636 august
12641 auk
12642 aunt
12643 aura
12644 aural
12645 auric
12646 austin
12651 auto
12652 autumn
12653 av
12654 avail
12655 ave
12656 aver
12661 avert
12662 avery
12663 aviate
12664 avid
12665 avis
12666 aviv
13111 avoid
13112 avon
13113 avow
13114 aw
13115 await
13116 awake
13121 award
13122 aware
13123 awash
13124 away
13125 awe
13126 awful
13131 awl
13132 awn
13133 awoke
13134 awry
13135 ax
13136 axe
13141 axes
13142 axial
13143 axiom
13144 axis
13145 axle
13146 axon
13151 ay
13152 aye
13153 ayers
13154 az
13155 aztec
13156 azure
13161 b
13162 b's
13163 ba
13164 babe
13165 babel
13166 baby
13211 bach
13212 back
13213 backup
13214 bacon
13215 bad
13216 bade
13221 baden
13222 badge
13223 baffle
13224 bag
13225 baggy
13226 bah
13231 bahama
13232 bail
13233 baird
13234 bait
13235 bake
13236 baku
13241 bald
13242 baldy
13243 bale
13244 bali
13245 balk
13246 balkan
13251 balky
13252 ball
13253 balled
13254 ballot
13255 balm
13256 balmy
13261 balsa
13262 bam
13263 bambi
13264 ban
13265 banal
13266 band
13311 bandit
13312 bandy
13313 bane
13314 bang
13315 banish
13316 banjo
13321 bank
13322 banks
13323 bantu
13324 bar
13325 barb
13326 bard
13331 bare
13332 barfly
13333 barge
13334 bark
13335 barley
13336 barn
13341 barnes
13342 baron
13343 barony
13344 barr
13345 barre
13346 barry
13351 barter
13352 barth
13353 barton
13354 basal
13355 base
13356 basel
13361 bash
13362 basic
13363 basil
13364 basin
13365 basis