On 17/06/2015 02:11, Maarten Bodewes wrote:
> Hi rsyncrypto devs,
>
> I've tried reading the source code but I cannot see if there is any signature
> or MAC added to the ciphertext. Is it possible that this protocol is
> vulnerable to padding Oracle attacks (in addition to changes to the
>
Hi rsyncrypto devs,
I've tried reading the source code but I cannot see if there is any
signature or MAC added to the ciphertext. Is it possible that this protocol
is vulnerable to padding Oracle attacks (in addition to changes to the
ciphertext / plaintext)? Or am I mistaken about that? Is there
