From owner-freebsd-security  Thu May  4 20:18:16 2000
Delivered-To: freebsd-security@freebsd.org
Received: from mtiwmhc26.worldnet.att.net (mtiwmhc26.worldnet.att.net [204.127.131.51])
	by hub.freebsd.org (Postfix) with ESMTP id D2E6E37B59C
	for <freebsd-security@freebsd.org>; Thu,  4 May 2000 20:18:12 -0700 (PDT)
	(envelope-from shalunov@att.net)
Received: from sharik.worldnet.att.net ([12.68.48.32])
          by mtiwmhc26.worldnet.att.net
          (InterMail vM.4.01.02.39 201-229-119-122) with ESMTP
          id <20000505031810.RGNL12683.mtiwmhc26.worldnet.att.net@sharik.worldnet.att.net>;
          Fri, 5 May 2000 03:18:10 +0000
Received: (from shalunov@localhost)
	by sharik.worldnet.att.net (8.9.2/8.9.2) id XAA01371;
	Thu, 4 May 2000 23:18:10 -0400 (EDT)
	(envelope-from shalunov)
To: Mark Murray <mark@grondar.za>
Cc: freebsd-security@freebsd.org
Subject: Re: Cryptographic dump(8)
References: <Pine.BSF.4.21.0005041318270.26492-100000@verbal.uits.iupui.edu> <200005042015.WAA07617@grimreaper.grondar.za>
From: stanislav shalunov <shalunov@att.com>
Date: 04 May 2000 23:18:10 -0400
In-Reply-To: Mark Murray's message of "Thu, 04 May 2000 22:15:32 +0200"
Message-ID: <877ld9vg5p.fsf@sharik.worldnet.att.net>
Lines: 14
X-Mailer: Gnus v5.5/Emacs 20.3
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Mark Murray <mark@grondar.za> writes:

> Yes. I have no hard references in front of me, but I'll put ${bodypart}
> on a block that CBC is 8-bytes-at-a-time-with-same-key-each-time. IE not
> good enough to stave off known plaintext attacks. CBC is what you'd use
> if the entire plaintext is of unpredictable structure.

You must be confusing CBC with ECB.

CBC is the correct chaining mode to use for this application.
Feedback modes would do more harm than good.

-- 
stanislav shalunov				| Speaking only for myself.


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message