[1390] in cryptography@c2.net mail archive
Re: How to build anonymous storage
daemon@ATHENA.MIT.EDU (Ben Laurie)
Sat Aug 30 16:52:40 1997
Date: Sat, 30 Aug 1997 21:15:59 +0100
From: Ben Laurie <ben@algroup.co.uk>
To: John Kelsey <kelsey@plnet.net>
CC: "Perry's crypto list" <cryptography@c2.net>, coderpunks@toad.com
John Kelsey wrote:
> Comments? Has someone else done this system already?
An obvious problem is backups of the salt file - the word processor
helpfully backing it up is the least of your problems. What about the
use wisely backing it up (on tape, for instance)?
Even without that, I find it hard to believe that anyone would trust an
important file's safety to a single copy of something that is impossible
to reproduce.
In short, the passphrase is going to give you all the security you can
have, so why bother with any more than the passphrase?
Cheers,
Ben.
--
Ben Laurie |Phone: +44 (181) 994 6435|Apache Group member
Freelance Consultant |Fax: +44 (181) 994 6472|http://www.apache.org
and Technical Director|Email: ben@algroup.co.uk |Apache-SSL author
A.L. Digital Ltd, |http://www.algroup.co.uk/Apache-SSL
London, England. |"Apache: TDG" http://www.ora.com/catalog/apache
