|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Full-disclosure] A new way to hide from Google and Yahoo
Valdis.Kletnieks
vt.edu
Date: Wed Jul 05 2006 - 15:10:04 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Wed, 05 Jul 2006 20:07:44 BST, n3td3v said:
> Read more folks, now we can talk about Google and Yahoo without using Tor
> www.digg.com/software/World_s_Most_Secure_Instant_Messenger_is_here_!!
Tell me - were any of the Digg votes for that from anybody who had actually
done a code review? Or they just saw "2048 bit RSA" and got woodies?
(Personally, I wouldn't want to be using 2048 bit RSA for the actual
stream encryption - that's something that IDEA or similar is much better for.
RSA is good for exchanging the IVs for the session keys, and that's about
it. And anybody want to place bets that it has tons of interesting attacks
on key management?)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.4 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001
iD8DBQFErByccC3lWbTT17ARAiX4AJwKLw7jQKsbz2WB1vJwYGUbGJpcigCg3/kO
GyXfFBBhjGpfEqN2sJenbxI=
=GvVa
-----END PGP SIGNATURE-----
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]