On Sat, 2009-03-07 at 14:51 -0500, Hadriel Kaplan wrote: > Another question is whether an attacker can create special nonce's for > one or more challenges it sends, that will help it figure out the > password. For example can they help a rainbow-table type of password > cracking, and how much the cnonce can prevent that.
If the cnonce is well chosen and the nc value incremented, I think that gets pretty hard, but I'm not by any means an expert on cracking one-way hash functions. _______________________________________________ Sip mailing list https://www.ietf.org/mailman/listinfo/sip This list is for NEW development of the core SIP Protocol Use [email protected] for questions on current sip Use [email protected] for new developments on the application of sip
