ADVERT: C12G
David Schwartz
davids at webmaster.com
Thu Jul 12 19:36:50 UTC 2007
> I would strongly advise against using any cryptographic product based on
> an algorithm which was designed by an amateur and has never been subject
> to review or cryptanalysis.
>
> DES
There are what appear to me on quick inspection to be serious flaws in the this software. For example, it uses RSA without proper padding. The website says "E-mail is encrypted using the RSA public-key cryptosystem thus eliminating security risks from symmetric ciphers." Any security expert will tell you that this raises immediate red flags. (And inspection of the code strongly suggests that it's as bad as it sounds.)
DS
More information about the freebsd-chat
mailing list