Re: Secure unsalted or fixed salt symmetric encryption?
- From: RW <rwmaillists@xxxxxxxxxxxxxx>
- Date: Mon, 25 May 2009 22:06:01 +0100
On Mon, 25 May 2009 21:00:39 +0200
Roland Smith <rsmith@xxxxxxxxx> wrote:
Or you can use the -nosalt option. But as explained in
[http://www.openssl.org/docs/apps/enc.html], using a random salt by
default is a design decision because: "Without the -salt option it is
possible to perform efficient dictionary attacks on the password".
That doesn't sound good, does it?
It's not a problem since she's using a random key file, not a weak
password.
_______________________________________________
freebsd-questions@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscribe@xxxxxxxxxxx"
- Follow-Ups:
- Re: Secure unsalted or fixed salt symmetric encryption?
- From: Roland Smith
- Re: Secure unsalted or fixed salt symmetric encryption?
- References:
- Secure unsalted or fixed salt symmetric encryption?
- From: Kelly Jones
- Re: Secure unsalted or fixed salt symmetric encryption?
- From: Roland Smith
- Secure unsalted or fixed salt symmetric encryption?
- Prev by Date: Re: How can this 'top' command output make sense? Load over 7 and total CPU use ~5%
- Next by Date: Re: Streaming server
- Previous by thread: Re: Secure unsalted or fixed salt symmetric encryption?
- Next by thread: Re: Secure unsalted or fixed salt symmetric encryption?
- Index(es):
Relevant Pages
|
