Secure unsalted or fixed salt symmetric encryption?
RW
rwmaillists at googlemail.com
Mon May 25 21:06:06 UTC 2009
On Mon, 25 May 2009 21:00:39 +0200
Roland Smith <rsmith at xs4all.nl> wrote:
> Or you can use the -nosalt option. But as explained in
> [http://www.openssl.org/docs/apps/enc.html], using a random salt by
> default is a design decision because: "Without the -salt option it is
> possible to perform efficient dictionary attacks on the password".
> That doesn't sound good, does it?
It's not a problem since she's using a random key file, not a weak
password.
More information about the freebsd-questions
mailing list