Christian Tschabuschnig wrote:
> John Lenz wrote:
>> You could write your script to first build a database of the encryption
>> of the text <?xml using all the different passwords in your list. Then,
>> you just need to do a binary search for the first few bytes of the
>> encrypted text.
> isn't the "<?xml" compressed by zlib in the original data-file before
> getting encrypted?
Yes, you are correct. Sorry. The attack should still be feasable
depending on the zlib algorithm (which I am not familiar with)