[nycbug-talk] Re: Linux Cryptoloop

felix zaslavskiy felix
Fri Mar 5 05:31:11 EST 2004


> Roland said. . .
> 
> >They use hashalot to generate the key from a passphrase and it is
> >just a simple hash or a salted hash rather than an industry standard
> >passphrase->key algorithm such as PKCS#5 PBKDF2 (which I use in
> >CGD.)  I do not understand exactly why everyone feels it is necessary
> >to play amateur cryptographer when there are accepted ways to do
> >these things that have been scrutinised by people who actually
> >understand the issues involved.  This is actually a rather large
> >pet peeve of mine, I mean if you presume that you know better than
> >professional cryptographers how to turn a passphrase into a key
> >then why don't you just write your own crypto algorithms, too? 

Lets just use lanman hash.




-- 
felix[at]bebinary.com
http://www.zaslavskiy.net/





More information about the talk mailing list