I will post in more detail about the first paper, although IMHO it's largely
fixed. I haven't read the second paper yet. However the bigger threat is their
claim to have a range of attacks (some of them?) in their public github repo. I
haven't looked at that yet either.
However, I repeat my traditional line:
OPENNET SUCKS, AND IT'S ONLY A MATTER OF TIME BEFORE SOMEBODY PRODUCES A GOOD
SET OF TOOLS FOR ATTACKING IT.
This is more relevant because "somebody" appears to be a specific group of
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 198 bytes
Desc: This is a digitally signed message part.