I was recently asked by one of our customers what the rules were for the passphrases used with bpinst, esp. where it relates to KMS and the use of passphrases to generate keys per the Data At Rest section of the Security and Encryption guide.
I've been able to determine that the passphrase can be 0 to 62 per the NB 7.5 guied, though there are some references to the passphrase being 64 characters not 63 as that would imply on the Support portal.
What we really need to know, and isn't documented: Are any characters considered illegal input or are they able to use any printable character? (in other words, can they use !@#$%^&*()-_<>?:"{}| etc. along with A-Z a-z 0-9
I'm leaning to there being no restrictions based on the way things are phrased but... what's the experience out there?
- David
