Title: RE: 3DES - 168 or 192 bits?
Parity -- of course!
Not to split hairs with Mr. Cooke, but 3DES is certainly much more than twice as secure as single DES, even if it does only provide 112 effective bits of encryption. More like 2^56 times more secure (against an exhaustive search).
Than
rw26> I'm using openssl-0.9.4 on solirs 2.6 on a Sun E3500 (sparc)
[...]
Noted.
rw26> Anyway, when I run my app, I call n = SSL_read( ssl, (char *)&ch, 1 );
rw26> to retrieve a byte into an int named ch. I find that my correct
rw26> byte is returned in the most significant byte of the int.
No s
Joel Morris wrote:
>
> Hello,
>
> I'm using openssl to implement PBEWithMD5AndDES. I'm also using Sun's JCE1.2 for
>java to do the
> same thing. When my iteration count <= 255 (0xff) I get the same encrypted data
>back from both
> programs. However, if I use a iteration count > 255 I stop g
At 15:55 19.01.00 -0500, you wrote:
Hello,
>I'm using openssl-0.9.4 on solirs 2.6 on a Sun E3500 (sparc)
>with the egcs gcc compiler v. 2.91.60. The application is multithreaded
>using pthreads.
>
>Anyway, when I run my app, I call n = SSL_read( ssl, (char *)&ch, 1 );
>to retrieve a byte into an
I'm using openssl-0.9.4 on solirs 2.6 on a Sun E3500 (sparc)
with the egcs gcc compiler v. 2.91.60. The application is multithreaded
using pthreads.
I have tried re-compiling with each of the available Configure
comandline params that mention solaris. Only those with gcc
will compile.
Anyway, w
Hello,
I'm using openssl to implement PBEWithMD5AndDES. I'm also using Sun's JCE1.2 for java
to do the
same thing. When my iteration count <= 255 (0xff) I get the same encrypted data back
from both
programs. However, if I use a iteration count > 255 I stop getting the same encrypted
data ba
I have downloaded OpenSSL to get OpenSSH to work. I could not find
any other mailing list for OpenSSH so I posting it to this group.
When I try to start up sshd I am getting the following error.
(0)root@caesar => sshd -f /usr/local/etc/sshd_config -h /usr/local/etc/ssh_host_key
error: Could not
> Josh Berezin wrote:
>
> It's like this: I'm trying to figure out exactly what we're using here, so we can
>report it to Marketing-folk. I didn't write any of the SSL code, I'm just asking it a
>few questions.
>
> SSL_CIPHER_description reports we're using 3DES(168). Makes sense.
> SSL_CIPHER
If this is for marketing, then note that 3DES only provides 2*56 bits of
security - it's only twice as secure as DES. See Schneier's book for
details (and to check - I may be wrong - I remember some kind of meet in
the middle attack, but have no idea whether it is practical).
(So claiming "168
Hello,
A new mirror of http://www.openssl.org/ is located at
http://modssl.missouri.edu/ (located in Missouri, USA)
Also, there is a new mirror for the mod_ssl web site at
http://modssl.missouri.edu/ (Missouri, USA) as well. Both are
updated 4 times per day.
For those who still prefer ftp acc
Hi Wangster,
Are you sure the web-server is your problem ? Are you connecting with your
browser and seeing that you have only 40 bit encryption ? If the latter is
the case then it's because your Netscape Browser or IE are export grade
(which is the case if you are resident outside the U.S. I thin
> Josh Berezin wrote:
>
> It's like this: I'm trying to figure out exactly what we're using
> here, so we can report it to Marketing-folk. I didn't write any of the
> SSL code, I'm just asking it a few questions.
>
> SSL_CIPHER_description reports we're using 3DES(168). Makes sense.
> SSL_CIPHER
We use Chrysalis Luna2 and LunaCA3 and like them.
http://www.chrysalis-its.com
/r$
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTE
Hello
I have been porting a Netscape nsapi program to Apache. The program now works
but I have had to compromise on certain thing. This because I don't filly
understand the openssl API. In the old nsapi code we uses a x509decode.h header
that was supplied with SSLeary.
This call was to x509decode
Hi guys,
In the openssl-users archive, I've seen a few references to hardware crypto
accelerator cards from both Rainbow (CryptoSwift) and nCipher (nFast). Are
there any other cards out there with similar functionality?
I'm interested in finding out how well these crypto cards integrate with
Ope
Hi,
Can anyone provide information as to the possibility of installing a keypair
(*.spc and
*.pvk) into the Cert7.db and Key3.db or Netscape browser within windowsNT
using
the OpenSSL toolkit.
Joseph
__
OpenSSL Project
Hello:
I am a newbe to openssl, I know openssl supports
DH-RSA-DES-CBC3-SHA and DH-DSS-DES-CBC3-SHA as
"ciphers". But I don't know how to let openssl use
those 2 ciphers :-(
Is there any document talking about step-by-step
procedures to let openssl use those 2 ciphers?
In order to
Don't hold me to this but I believe that a (single) DES key holds 56 bits
worth of useful data + a parity bit per 7 bits which would account for the
extra keysize.
Dave
-Original Message-
From: Josh Berezin [mailto:[EMAIL PROTECTED]]
Sent: 18 January 2000 22:49
To: [EMAIL PROTECTED]
Subj
18 matches
Mail list logo
