[openbeos] Re: CVS and SSH -- which versions?
- From: "Fredrik Holmqvist" <holmqvist.fredrik@xxxxxxxxx>
- To: <openbeos@xxxxxxxxxxxxx>
- Date: Fri, 25 Jan 2002 23:41:59 +0100
> DES is an older encryption algorithm. It is considered less secure than
> 3DES and blowfish, which come with 'standard' SSH.
Let's not talk about what's secure.
DES is less secure than triple DES, but it all depends on what you encrypt, the
size of your key, how many cribs(?) you leave to discover and how often you use
the same key. It also depends on the actions of the message, if the actions
can be recorded you have a giveaway about the message is(not everybody realize
that).
If I can discover that some sequence sent to a certain machine means ftp to
ftp.cdrom.com, I'll have a ball compared to doing a brute force attack on the
encrypted data you sent. The resulting traffic after a sequence of encrypted
traffic usually is a givaway about some things included in the message
(ftp/telnet/http/ssh adress).
It's all in the eye of the beholder...
/Fredrik Holmqvist
- Follow-Ups:
- [openbeos] OpenBeOS logo ?
- From: Steve Vallee
- References:
- [openbeos] Re: CVS and SSH -- which versions?
- From: Sandor Vroemisse
Other related posts:
- » [openbeos] CVS and SSH -- which versions?
- » [openbeos] Re: CVS and SSH -- which versions?
- » [openbeos] Re: CVS and SSH -- which versions?
- [openbeos] OpenBeOS logo ?
- From: Steve Vallee
- [openbeos] Re: CVS and SSH -- which versions?
- From: Sandor Vroemisse