On 17/06/2015 02:11, Maarten Bodewes wrote:
> Hi rsyncrypto devs,
>
> I've tried reading the source code but I cannot see if there is any signature
> or MAC added to the ciphertext. Is it possible that this protocol is
> vulnerable to padding Oracle attacks (in addition to changes to the
>
Hi rsyncrypto devs,
I've tried reading the source code but I cannot see if there is any
signature or MAC added to the ciphertext. Is it possible that this protocol
is vulnerable to padding Oracle attacks (in addition to changes to the
ciphertext / plaintext)? Or am I mistaken about that? Is there
On 16/06/2015 12:54, compiling entropy wrote:
> After reading through the man pages and the available documentation a few
> times, my understanding is that rsyncrypto works by generating a symmetric
> key for each file you're encrypting, and saving that symmetric key to a file.
> It then en
After reading through the man pages and the available documentation a few
times, my understanding is that rsyncrypto works by generating a symmetric
key for each file you're encrypting, and saving that symmetric key to a
file. It then encrypts the file using that symmetric key, encrypts the
symmetr
