25 Feb
2005
25 Feb
'05
08:59
SuSE 9.2 creates encrypted volumes without salting the password/key. While this is not a problem for long binary keys, it simplifies a dictionary attack against a shorter ascii keys. man losetup says: -S pseed Sets encryption password seed pseed which is appended to user supplied password before hashing. Using different seeds for different partitions makes dictionary attacks slower but does not prevent them if user supplied password is guessable. &:-)