I've read reports to the effect that GBDE is vulnerable to online
dictionary attacks unless two-factor authentication is used.  The only
such report I can find now is this discussion of NetBSD's CGD, where its
author contrasts it with GBDE:


Is this still the case?  Are there any other security concerns related to
GBDE's implementation that you might mention?  How well does GELI stack
up against GBDE?

I was surprised to read that OpenBSD's svnd is vulnerable to *offline*
dictionary attacks.  Any comments on that?

CCD CopyWrite Chad Perrin [ http://ccd.apotheon.org ]
Sen. Dick Durbin, D-IL, to an RIAA executive: "Are you headed to junior
high schools to round up the usual suspects?"
freebsd-questions@freebsd.org mailing list
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Reply via email to