On Thu, Aug 14, 2003 at 09:37:56PM +0800, Bopolissimus Platypus wrote: > The only weakness i find is in the choice of ciphers. MDK 9.1 only has > support for AES128, AES196, AES256, AES (password is fed directly > into the cipher), XOR (considered insecure probably because passwords > are not going to be long enough to be really secure). >
AES/Rijndael is now the world's most intensively studied cipher, and so far no significantly better cryptanalytic results have come up than those found by Counterpane during the AES competition. It's already been three years... :) > It'd be nice to have other ciphers, e.g. blowfish, twofish, serpent, etc. > I wouldn't be surprised if some of the security enhanced distributions > have better cipher support. But for now, AES256 is good enough. > Serpent is very slow. If you've tried to use it on an encrypted filesystem, or even tried to encrypt data using it, its performance is really slow. Several times slower than AES/Rijndael, but faster than triple-des fortunately. -- Philippine Linux Users' Group (PLUG) Mailing List [EMAIL PROTECTED] (#PLUG @ irc.free.net.ph) Official Website: http://plug.linux.org.ph Searchable Archives: http://marc.free.net.ph . To leave, go to http://lists.q-linux.com/mailman/listinfo/plug . Are you a Linux newbie? To join the newbie list, go to http://lists.q-linux.com/mailman/listinfo/ph-linux-newbie
