Thanks to Rikairchy I was able to take a look. They are saying:
"For safety, the Keybase servers never see your passphrase, even during
login, and therefore cannot decrypt your private key. "
The only question: Can this be trusted? Can we make sure they don't know
the passphrase?
Even though this l
On Fri, Jun 20, 2014 at 1:22 PM, Rikairchy wrote:
> Why would a website focused on providing security allow users to
> upload their private keys?
>
They are willfully creating a less secure system in hopes of making it
popular. Supporting private key upload completely changes the threat model,
f
Hi,
On 20 Jun 2014, at 22:22, Rikairchy wrote:
> There is an option to create as well as upload your private key. I'm
> very new to this type of encryption, having only worked with
> Truecrypt, SSH, and Bitloccker prior, but I was under the impression
> that the private key was the last thing yo
-Original Message-
From: Rikairchy
Sent: Friday, June 20, 2014 13:22
[ ... ]
There is an option to create as well as upload your private key. I'm
very new to this type of encryption, having only worked with
Truecrypt, SSH, and Bitloccker prior, but I was under the impression
that the
Hello list!
These are Brute Force and Cross-Site Scripting vulnerabilities in Zyxel
P660RT2 EE ADSL Router.
-
Affected products:
-
Vulnerable is the next model: Zyxel P660RT2 EE. ZyNOS Firmware Version:
V3.40 (AXN.1). This model with other firmwar
