On Friday 05 March 2004 10:43, Michael Armijo wrote:
> It is unrealistic to expect users to forego the use of email
> attachments entirely. So the mantra is really "never open any
It may be unrealistic to expect that not foregoing using e-mail as a
substitute for file services will ever solve the attachment
vulnerability problems.
> communicated separately, by means other than email. I was concerned
> that the zip files themseves were now somehow vulnerable to cracking
> by a third party. Apparently, they are not.
I think you will find upon further investigation of the cryptographic
methods used for typical zip file encryption that they are in fact
vulnerable to cracking, more or less so depending on the exact crypto
method chosen.
--Karl
Karl Grose
IST-WSS
------------------------------------------------------------------------
The following was automatically added to this message by the list server:
For information about Micronet, including subscribing to
or unsubscribing from its mailing list and finding out
about upcoming meetings, please visit the Micronet Web site:
<http://micronet.berkeley.edu/>.
Received on Fri Mar 5 10:57:29 2004
This archive was generated by hypermail 2.1.8 : Fri Mar 05 2004 - 10:57:29 PST