[nycbug-talk] Re: Linux Cryptoloop
george at sddi.net
Fri Mar 5 22:18:55 EST 2004
>From: talk-bounces at lists.nycbug.org
>[mailto:talk-bounces at lists.nycbug.org] On Behalf Of felix zaslavskiy
>Sent: Friday, March 05, 2004 5:31 AM
>To: talk at lists.nycbug.org
>Subject: Re: [nycbug-talk] Re: Linux Cryptoloop
>> Roland said. . .
>> >They use hashalot to generate the key from a passphrase and it is
>> >just a simple hash or a salted hash rather than an industry standard
>> >passphrase->key algorithm such as PKCS#5 PBKDF2 (which I use in
>> >CGD.) I do not understand exactly why everyone feels it is
>> >to play amateur cryptographer when there are accepted ways to do
>> >these things that have been scrutinised by people who actually
>> >understand the issues involved. This is actually a rather large
>> >pet peeve of mine, I mean if you presume that you know better than
>> >professional cryptographers how to turn a passphrase into a key
>> >then why don't you just write your own crypto algorithms, too?
>Lets just use lanman hash.
or just Caesarian-style transpostion.
More information about the talk