Mailinglist Archive: opensuse-security (256 mails)
| < Previous | Next > |
Encrypted devices unsalted
- From: 2005 <andrew2005@xxxxxxxxxxx>
- Date: Fri, 25 Feb 2005 10:59:33 +0200 (SAST)
- Message-id: <Pine.LNX.4.61.0502251051530.12772@xxxxxxxxxxxxxxx>
SuSE 9.2 creates encrypted volumes without salting the
password/key. While this is not a problem for long binary keys,
it simplifies a dictionary attack against a shorter ascii keys.
man losetup says:
-S pseed
Sets encryption password seed pseed which is appended to
user supplied password before hashing. Using different
seeds for different partitions makes dictionary attacks
slower but does not prevent them if user supplied password
is guessable.
&:-)
password/key. While this is not a problem for long binary keys,
it simplifies a dictionary attack against a shorter ascii keys.
man losetup says:
-S pseed
Sets encryption password seed pseed which is appended to
user supplied password before hashing. Using different
seeds for different partitions makes dictionary attacks
slower but does not prevent them if user supplied password
is guessable.
&:-)
| < Previous | Next > |