---

---

Michal Wodzinski <michal@null.dk> wrote:
> Er et RSA2 keypair mest sikkert, eller DSA2?

Jeg tvivler staerkt paa at den kryptografiske styrke betyder noget for
dig. Hvis den goer, boer du have en hel matematisk/crypto research
gruppe ansat til at svare paa den slags spoergsmaal for dig.

Det er mere sandsynligt at nogen enten bryder ind i maskinen hvor din
private key ligger eller at nogen benytter et man-in-the-middle angreb
paa din SSH forbindelse en dag du blindt svarer "ja" til at fortsaette
selvom ssh brokker sig over et forkert key fingerprint.

Efterhaanden som det bliver svaerere og svaerere at angribe
krypteringen, finder angribere paa andre maader at opnaa deres maal paa.

--
I prefer the dark of the night, after midnight and before four-thirty,
when it's more bare, more hollow. http://a.mongers.org

---

---

Michal Wodzinski <michal@null.dk> wrote:
>> Det er mere sandsynligt at nogen enten bryder ind i maskinen hvor din
>> private key ligger
>
> hvis maskinen da ellers ser interresant nok ud :)

``You may manufacture industrial-strength toilet seats, but be
"next door," in Internet terms, to an e-commerce site performing
credit-card processing. Or maybe you have great bandwidth or
juicy servers, or maybe your domain name just sounds cool. It
often doesn't matter what your company is or does, intruders can
make use of your network even if it isn't their final target.''

http://www.networkcomputing.com/1021/1021ws1.html

--
I prefer the dark of the night, after midnight and before four-thirty,
when it's more bare, more hollow. http://a.mongers.org

---