10.11.2015 10:13, Alex Peshkoff wrote: > Does anybody see problems with suggested approach? > If not - I will add a ticket to the tracker for myself.
After a good sleeping on it, I'm sure that verify the key by decrypting something kept in DB header is a very bad idea. In fact, it provides to everybody one surely known plain-text and corresponding crypto-text. Effectively it push out of business any algorithm vulnerable to known-plaintext attack. XOR-ing with any key of any length would have no use anymore. -- WBR, SD. ------------------------------------------------------------------------------ Firebird-Devel mailing list, web interface at https://lists.sourceforge.net/lists/listinfo/firebird-devel
