Re: Bug#765512: general: distrust old crypto algos and protocols perdefault

To: debian-devel@lists.debian.org
Subject: Re: Bug#765512: general: distrust old crypto algos and protocols perdefault
From: Thorsten Glaser <tg@mirbsd.de>
Date: Thu, 16 Oct 2014 09:49:51 +0200
Message-id: <[🔎] alpine.DEB.2.11.1410160946270.5552@tglase.lan.tarent.de>
In-reply-to: <[🔎] 1413405340.4706.26.camel@scientia.net>
References: <[🔎] 20141015180933.18771.64526.reportbug@heisenberg.scientia.net> <[🔎] 20141015192521.GB424@chew.redmars.org> <[🔎] 1413402283.4706.20.camel@scientia.net> <[🔎] 543ED14D.1020307@freesources.org> <[🔎] 1413405340.4706.26.camel@scientia.net>

On Wed, 15 Oct 2014, Christoph Anton Mitterer wrote:

> I see it a bit differently:
> RC4 is broken. Full stop.
> Therefore new versions clients and servers should per default not
> use/enable/accept it.

Sorry, but I *have* to nitpick here.

RC4 as used by SSL is mostly broken. (A server could reset login
cookies to be invalid after, say, 65536 pageloads, so that the
attack cannot be mounted. This would allow the use of RC4 in SSL
for compatibility/interoperability.)

RC4 as used by arc4random is not broken, because arc4random (at
least the more sane implementations) have one or several changes
in effect that prevent the issues from RC4 becoming abused.

RC4 as used by WEP is broken. I think this cannot be phrased
differently, either.

RC4 as used by Kerberos has been described to you already.

RC4 (aRC4) is just a stream cipher with some bad properties,
that can, mostly, be worked around in the protocol. But if the
protocol does not do that, it’s broken, yes.

bye,
//mirabilos
-- 
[16:04:33] bkix: "veni vidi violini"
[16:04:45] bkix: "ich kam, sah und vergeigte"...

Reply to:

References:
- Bug#765512: general: distrust old crypto algos and protocols perdefault
  - From: Christoph Anton Mitterer <calestyo@scientia.net>
- Re: Bug#765512: general: distrust old crypto algos and protocols perdefault
  - From: Jonathan Dowland <jmtd@debian.org>
- Re: Bug#765512: general: distrust old crypto algos and protocols perdefault
  - From: Christoph Anton Mitterer <calestyo@scientia.net>
- Re: Bug#765512: general: distrust old crypto algos and protocols perdefault
  - From: Jonas Meurer <jonas@freesources.org>
- Re: Bug#765512: general: distrust old crypto algos and protocols perdefault
  - From: Christoph Anton Mitterer <calestyo@scientia.net>

Prev by Date: Re: bash exorcism experiment ('bug' 762923 & 763012)
Next by Date: Re: Built-Using, again…
Previous by thread: Re: Bug#765512: general: distrust old crypto algos and protocols perdefault
Next by thread: Re: Bug#765512: general: distrust old crypto algos and protocols perdefault
Index(es):
- Date
- Thread