On Fri, Feb 07, 2014 at 12:57:09PM -0500, Paul Wouters wrote:
> On Thu, 6 Feb 2014, Viktor Dukhovni wrote:
>
> >I think that HMAC-sha224 would be wiser, since otherwise a single
> >dictionary works for all domains.
>
> So what, telnet'ing to port 25 and issuing HELO and RCP TO: is cheaper
> already.
There's a difference between online and off-line attacks.
For an NSEC zone, if the hash does not include the full address,
the attacker can trivially perform a lookup in a pre-computed
domain-indendent dictionary. Thus the usernames are easily recovered
off-line. So if you don't do HMAC, you must hash the full address,
not just the localpart.
For an NSEC3 zone, the attacker gets lightly iterated salted hashes
of the query fqdn, and needs to compute the same for each guess of
a plausible user name.
Bottom line, hash the full address, not just the localpart.
--
Viktor.
_______________________________________________
dane mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dane
