From owner-freebsd-security  Thu Aug 29  7:30:40 2002
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 84BB437B400
	for <freebsd-security@freebsd.org>; Thu, 29 Aug 2002 07:30:36 -0700 (PDT)
Received: from barry.mail.mindspring.net (barry.mail.mindspring.net [207.69.200.25])
	by mx1.FreeBSD.org (Postfix) with ESMTP id E42F843E75
	for <freebsd-security@freebsd.org>; Thu, 29 Aug 2002 07:30:35 -0700 (PDT)
	(envelope-from dfeustel@mindspring.com)
Received: from 1cust36.tnt5.fort-wayne.in.da.uu.net ([65.238.146.36] helo=dafco6w9sb81bw)
	by barry.mail.mindspring.net with smtp (Exim 3.33 #1)
	id 17kQIj-00014a-00; Thu, 29 Aug 2002 10:29:37 -0400
Message-ID: <000a01c24f68$803cb350$2492ee41@dafco6w9sb81bw>
From: "Dave Feustel" <dfeustel@mindspring.com>
To: "Perry E. Metzger" <perry@piermont.com>,
	"Petr Swedock" <petr@blade-runner.mit.edu>
Cc: "Karsten W. Rohrbach" <karsten@rohrbach.de>, <mipam@ibb.net>,
	"Matthias Buelow" <mkb@mukappabeta.de>,
	"Stefan Krüger" <skrueger@europe.com>,
	<freebsd-security@FreeBSD.ORG>, <tech-security@netbsd.org>,
	<misc@openbsd.org>
References: <20020828200748.90964.qmail@mail.com> <3D6D3953.6090005@mukappabeta.de> <20020828224330.GE249@localhost> <87k7mamc2s.fsf@snark.piermont.com> <20020829091232.A53344@mail.webmonster.de> <87bs7ln66u.fsf@snark.piermont.com> <86hehdbvsb.fsf@blade-runner.mit.edu>
Subject: Re: 1024 bit key considered insecure (sshd)
Date: Thu, 29 Aug 2002 09:29:33 -0500
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

And this analysis doesn't even take into account remote viewing :-).
----- Original Message -----
From: "Petr Swedock" <petr@blade-runner.mit.edu>
To: "Perry E. Metzger" <perry@piermont.com>
Cc: "Karsten W. Rohrbach" <karsten@rohrbach.de>; <mipam@ibb.net>; "Matthias Buelow" <mkb@mukappabeta.de>; "Stefan Krüger"
<skrueger@europe.com>; <freebsd-security@FreeBSD.ORG>; <tech-security@netbsd.org>; <misc@openbsd.org>
Sent: Thursday, August 29, 2002 9:10 AM
Subject: Re: 1024 bit key considered insecure (sshd)


> "Perry E. Metzger" <perry@piermont.com> writes:
>
> > "Karsten W. Rohrbach" <karsten@rohrbach.de> writes:
> >
> > I would have thought spending at least hundreds of millions off
> > dollars and (as importantly) at least months of time would have been
> > considered "unattractive" enough to encourage other methods of getting
> > at your data like breaking in to your physical location. Silly me. I
> > guess I missed the concept behind crypto.
>
> The concept behind crypto is to confuse, scramble and obfuscate. When
> it was first designed for and employed in computers the existing
> mathematical models, computer muscle and modes of analysis were
> thought to assure unbreakability.  Now the use has morphed into
> a race condition where present mathematical models and future
> computer muscle, coupled with existing modes of analysis are
> thought to assure breakability.
>
> Peace,
>
> Petr
>


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message