From mboxrd@z Thu Jan 1 00:00:00 1970 Message-ID: <028201c4083a$ac71c8c0$67844051@SOMA> From: "boyd, rounin" To: <9fans@cse.psu.edu> References: Subject: Re: [9fans] cryptographic signatures & factotum MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Date: Fri, 12 Mar 2004 15:02:35 +0100 Topicbox-Message-UUID: 2cda17d4-eacd-11e9-9e20-41e7f4b1d025 > Yup, I figured everyone would want to be boyd. If you are implying that we > already use a better algorithm, that's not really true for p9sk, only > for secstore. If you are implying that we already have a better algorithm > implemented, you're right up to a point. i'm implying that DES died 10+ years back. i carried out the odd 'experiment' with some fast h/w and large amounts of disk [then]. DES unix password cracking came down to a grep of 4096 files, so a few seconds. this was done for internal, sanctioned [allowed] security issues. i knew it was dead. i just wanted to test it. sadly, the 'experiment' was terminated, once it had proven its point. 3DES is another issue.