Date: Fri, 19 Jan 2001 09:34:55 -0700 From: Wes Peters <wes@softweyr.com> To: Garrett Wollman <wollman@khavrinen.lcs.mit.edu> Cc: freebsd-security@FreeBSD.ORG Subject: Re: A wish and a dream... Message-ID: <3A686CAF.C195C392@softweyr.com> References: <3A641F3F.55AA9322@sarenet.es> <3A642174.9A7A8068@tempest.sk> <3A65548B.E3D7ADA4@softweyr.com> <200101191532.KAA10045@khavrinen.lcs.mit.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
Garrett Wollman wrote:
>
> <<On Wed, 17 Jan 2001 01:15:07 -0700, Wes Peters <wes@softweyr.com> said:
>
> > The iKey looks great, but I've been told it has a known exploit (a hard-
> > coded keyphrase built into the hardware, or something like that.)
>
> However, all that gives an attacker is the chance to attempt to
> brute-force the pass-phrase(s) your key(s) is/are protected under.
Right, and the whole idea with something like the iKey is to only connect
it to the machine when you need the key. I don't forsee someone mugging
the FreeBSD SO in order to send out properly signed nefarious security
patch.
At least not this week.
--
"Where am I, and what am I doing in this handbasket?"
Wes Peters Softweyr LLC
wes@softweyr.com http://softweyr.com/
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3A686CAF.C195C392>