Home page logo

fulldisclosure logo Full Disclosure mailing list archives

Re: Security issue in Filezilla3.0.9.2:passwordsare stored in plain text (sitemanager.xml)
From: "Garrett M. Groff" <groffg () gmgdesign com>
Date: Mon, 21 Apr 2008 23:10:30 -0400

Joey, Wikipedia has some decent write-ups on both compression and 
encryption. Understanding those concepts would be helpful before tackling 
RFCs. Hope that helps.

- G

On Mon, 21 Apr 2008 22:31:53 EDT, Joey Mengele said:

So are you trying to suggest compression is not as secure as
encryption? Have you even *read* the RFC in question?

The design goal of most compression algorithms is that *anybody* can take
the compressed data and get back the original.  The design goal of most
encryption is that *only the intended recipient* can decrypt and get the
original data back.

The only question left at this point is whether the contents of your brain 
compressed, or merely encrypted, and which of the two would be more secure.

Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]