Penetration Testing mailing list archives

[PEN-TEST] RC4

From: Raju Mathur <raju () linux-delhi org>
Date: Wed, 29 Nov 2000 11:25:26 +0530

Have a look at:

     http://www.counterpane.com/crypto-gram-9909.html#OpenSourceandSecurity

where Bruce Schneier talks about the benefits (or otherwise) of open
source cryptography.

Regards,

-- Raju

"Jay" == Jay Mobley <jmobley () IEINET COM> writes:


    Jay> So , I am not pen-testing anything, but rather looking at
    Jay> some of my own venurabilities... and in doing so I learn that
    Jay> my Win2k Terminal server sends data to and from its client in
    Jay> a data stream encrypted with RC4. And in researching what I
    Jay> could about RC4 , I have seen time and time again that RC4
    Jay> source was posted to a public usenet forum..... So my
    Jay> question is this... If one has the source code to an
    Jay> encryption standard... how secure is that standard???


    Jay> -Jay Mobley Interactive Explorers

Current thread:

[PEN-TEST] RC4 Jay Mobley (Nov 29)
- Re: [PEN-TEST] RC4 Erick fabrizio (Nov 29)
- Re: [PEN-TEST] RC4 Ryan Russell (Nov 29)
- Re: [PEN-TEST] RC4 Chris Deibler (Nov 29)
- Re: [PEN-TEST] RC4 Alan Olsen (Nov 29)
  - Re: [PEN-TEST] RC4 Robert van der Meulen (Nov 30)
- [PEN-TEST] RC4 Raju Mathur (Nov 29)