From mboxrd@z Thu Jan  1 00:00:00 1970
Message-ID: <775b8d19050413085223e10893@mail.gmail.com>
Date: Thu, 14 Apr 2005 01:52:49 +1000
From: Bruce Ellis <bruce.ellis@gmail.com>
To: Fans of the OS Plan 9 from Bell Labs <9fans@cse.psu.edu>
Subject: Re: [9fans] crypto question
In-Reply-To: <035d01c53fdb$1e46c7b0$9efb7d50@kilgore>
Mime-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
References: <Pine.BSI.4.61.0504121245410.5044@malasada.lava.net>
	<425C6552.6090908@Princeton.EDU>
	<Pine.BSI.4.61.0504121735440.5044@malasada.lava.net>
	<035d01c53fdb$1e46c7b0$9efb7d50@kilgore>
Topicbox-Message-UUID: 376c0fb0-ead0-11e9-9d60-3106f5b1d025

I think it's a mute point. "unsuitable for anything
but authentication" is fair, but it is suitable for p9sk1.

If you really wanta try a man-in-the-middle attack you'll
need more resources than the user is willing to wait for.

If you are just snooping you won't learn anything to
compromise the authenticated session or shared key.

Correct me if I'm wrong.

brucee

On 4/13/05, boyd, rounin <boyd@insultant.net> wrote:
> > If this is the case, should this be switched now that export restrictio=
ns
> > have eased?
>=20
> 'spose so.  i quite liked the CBC tho.  guess it hints what the NSA
> could bust, rather than J. Random Idiot.
> --
> MGRS 31U DQ 52572 12604