<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Full Disclosure: Re: JaPCrypt

Re: JaPCrypt

From: coderman <coderman_at_gmail.com>
Date: Wed, 6 Feb 2008 03:59:30 -0800

On Feb 6, 2008 3:21 AM, Gerardo Di Giacomo <gerardo_at_linux.it> wrote:
> ...
> The PSK is never sent, neither by the client neither by the server.

apologies, i will be more clear:

since psk without key distribution nor secure secret exchange does not
solve the problems that HTTPS solves, to say this is useful in
situations where HTTPS is not available is disingenuous.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Received on Feb 06 2008

This message: [ Message body ]
Next message: Ferdinand Klinzer: "Re: What makes Yahoo! a good merger candidate?"
Previous message: Gerardo Di Giacomo: "Re: JaPCrypt"
In reply to: Gerardo Di Giacomo: "Re: JaPCrypt"
Next in thread: Valdis.Kletnieks_at_vt.edu: "Re: JaPCrypt"
Reply: Valdis.Kletnieks_at_vt.edu: "Re: JaPCrypt"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]