IETF Logo Mail Archive

Re: Better S2K functions for OpenPGP?

Peter Gutmann <pgut001@cs.auckland.ac.nz> Thu, 10 December 2009 22:05 UTC

Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id nBAM5TBt064538 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 10 Dec 2009 15:05:29 -0700 (MST) (envelope-from owner-ietf-openpgp@mail.imc.org)
Received: (from majordom@localhost) by balder-227.proper.com (8.14.2/8.13.5/Submit) id nBAM5TEp064537; Thu, 10 Dec 2009 15:05:29 -0700 (MST) (envelope-from owner-ietf-openpgp@mail.imc.org)
X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-openpgp@mail.imc.org using -f
Received: from mailhost.auckland.ac.nz (larry.its.auckland.ac.nz [130.216.12.34]) by balder-227.proper.com (8.14.2/8.14.2) with ESMTP id nBAM5QCt064530 for <ietf-openpgp@imc.org>; Thu, 10 Dec 2009 15:05:27 -0700 (MST) (envelope-from pgut001@wintermute01.cs.auckland.ac.nz)
Received: from localhost (localhost.localdomain [127.0.0.1]) by mailhost.auckland.ac.nz (Postfix) with ESMTP id A0DBE1B270; Fri, 11 Dec 2009 11:05:25 +1300 (NZDT)
X-Virus-Scanned: by amavisd-new at mailhost.auckland.ac.nz
Received: from mailhost.auckland.ac.nz ([127.0.0.1]) by localhost (larry.its.auckland.ac.nz [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id e8IG-xuykoMU; Fri, 11 Dec 2009 11:05:25 +1300 (NZDT)
Received: from mf1.fos.auckland.ac.nz (mf1.fos.auckland.ac.nz [130.216.33.150]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by mailhost.auckland.ac.nz (Postfix) with ESMTP id A9D821A03D; Fri, 11 Dec 2009 11:05:24 +1300 (NZDT)
Received: from wintermute01.cs.auckland.ac.nz ([130.216.34.38]) by mf1.fos.auckland.ac.nz with esmtps (TLS1.0:RSA_AES_256_CBC_SHA1:32) (Exim 4.69) (envelope-from <pgut001@wintermute01.cs.auckland.ac.nz>) id 1NIr8W-0006oT-HX; Fri, 11 Dec 2009 11:05:24 +1300
Received: from pgut001 by wintermute01.cs.auckland.ac.nz with local (Exim 4.63) (envelope-from <pgut001@wintermute01.cs.auckland.ac.nz>) id 1NIr8W-0002ux-By; Fri, 11 Dec 2009 11:05:24 +1300
From: Peter Gutmann <pgut001@cs.auckland.ac.nz>
To: df@dfranke.us, jon@callas.org
Subject: Re: Better S2K functions for OpenPGP?
Cc: ietf-openpgp@imc.org
In-Reply-To: <56CD26AA-5808-49C1-8B87-2D90F610B329@callas.org>
Message-Id: <E1NIr8W-0002ux-By@wintermute01.cs.auckland.ac.nz>
Date: Fri, 11 Dec 2009 11:05:24 +1300
Sender: owner-ietf-openpgp@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-Unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
List-ID: <ietf-openpgp.imc.org>

Jon Callas <jon@callas.org> writes:

>Let's do one more gedankenexperiment. Get a good mouthful of coffee and your 
>new keyboard. Go over to a mirror and look into the mirror while holding your 
>keyboard under your chin. Now think to yourself ten times, "When it comes to 
>cloud computing, the government is a million times more clueful than Amazon." 
>Go on. Let me know if your keyboard survives. I don't think I could do it 
>without laughing somewhere around the seventh or eighth iteration.

I was tempted to reply to an earlier message that said something like "the US 
intelligence budget is umpty-gazillion dollars and they're going to use all of 
it to build a hardware S2K machine to target me, personally" with "trust me, 
your collection of Paris Hilton vids just isn't that interesting to the NSA", 
but you've said it much better.

>Do you see why I'm harumphing? Come on, if you have big security needs, 
>nothing improves the situation better than adding a few more characters to 
>your passphrase.

Precisely.

Peter.

v2.23.0 | Report a Bug | By Email