[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Is #285371 really an exim problem, or is it gnutls failing?

On Mon, Dec 20, 2004 at 04:13:18PM +0100, Jan Niehusmann wrote:
> Yes, urandom is not guaranteed to be 100%
> random, it may degenerate to a simple pseudo-RNG. Still, it would be
> extremely hard for an attacker to guess the state of this pseudo-RNG

We have computers to automate these 'hard' problems. And it's been
done before. Netscape was once cracked this way.

> Which is much better
> than no encryption at all, and sufficient for most real-world purposes.

Snake oil.

  .''`.  ** Debian GNU/Linux ** | Andrew Suffield
 : :' :  http://www.debian.org/ |
 `. `'                          |
   `-             -><-          |

Attachment: signature.asc
Description: Digital signature

Reply to: