Home page logo
/

pen-test logo Penetration Testing mailing list archives

[PEN-TEST] RC4
From: Raju Mathur <raju () linux-delhi org>
Date: Wed, 29 Nov 2000 11:25:26 +0530

Have a look at:

     http://www.counterpane.com/crypto-gram-9909.html#OpenSourceandSecurity

where Bruce Schneier talks about the benefits (or otherwise) of open
source cryptography.

Regards,

-- Raju

"Jay" == Jay Mobley <jmobley () IEINET COM> writes:

    Jay> So , I am not pen-testing anything, but rather looking at
    Jay> some of my own venurabilities... and in doing so I learn that
    Jay> my Win2k Terminal server sends data to and from its client in
    Jay> a data stream encrypted with RC4. And in researching what I
    Jay> could about RC4 , I have seen time and time again that RC4
    Jay> source was posted to a public usenet forum..... So my
    Jay> question is this... If one has the source code to an
    Jay> encryption standard... how secure is that standard???


    Jay> -Jay Mobley Interactive Explorers


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]