1995-11-09 - Re: PGP Comment feature weakens remailer security

Header Data

From: “Perry E. Metzger” <perry@piermont.com>
To: Raph Levien <raph@cs.berkeley.edu>
Message Hash: 073358e9cb3cbbcb0be63fd028538834b2e25763c4da7f519ab8d99d1cd81f34
Message ID: <199511091413.JAA15288@jekyll.piermont.com>
Reply To: <199511090147.RAA31271@kiwi.cs.berkeley.edu>
UTC Datetime: 1995-11-09 14:34:33 UTC
Raw Date: Thu, 9 Nov 1995 22:34:33 +0800

Raw message

From: "Perry E. Metzger" <perry@piermont.com>
Date: Thu, 9 Nov 1995 22:34:33 +0800
To: Raph Levien <raph@cs.berkeley.edu>
Subject: Re: PGP Comment feature weakens remailer security
In-Reply-To: <199511090147.RAA31271@kiwi.cs.berkeley.edu>
Message-ID: <199511091413.JAA15288@jekyll.piermont.com>
MIME-Version: 1.0
Content-Type: text/plain



Raph Levien writes:
> > I think you are fine if the odds of corrupting the message are less than 
> > the odds of getting hit by a a falling meteor while running the program. 
> > In general there is little point in making any one part of the system 
> > many orders of magnitude more reliable than any other part.
> 
> I agree entirely. That's why my PGP key at school is 382 bits. It's a
> lot easier to compromise my machine than factor a 382 bit number.

On the other hand, it costs nothing by most people's standards to use
a 1024 bit key, so why not use one? I find that there is only a point
in using low security for anything in particular when there is a
perceivable cost to it -- if the cost is typing a different number
while doing key generation, I don't see why one should suffer the
tradeoff.

Perry

Thread

• Return to November 1995

• Return to “Andreas Bogk <andreas@artcom.de>”
• Return to “anonymous-remailer@shell.portal.com”
• Return to “Jon Lasser <jlasser@rwd.goucher.edu>”
• Return to “Lance Cottrell <loki@obscura.com>”
• Return to “Laurent Demailly <dl@hplyot.obspm.fr>”
• Return to “NetSurfer <netsurf@pixi.com>”
• Return to ““Perry E. Metzger” <perry@piermont.com>”

• Return to “Raph Levien <raph@CS.Berkeley.EDU>”

• 1995-11-08 (Wed, 8 Nov 1995 13:21:55 +0800) - PGP Comment feature weakens remailer securityPGP Comment feature weakens remailer security - anonymous-remailer@shell.portal.com
  • 1995-11-09 (Thu, 9 Nov 1995 08:44:18 +0800) - Re: PGP Comment feature weakens remailer security - Raph Levien <raph@CS.Berkeley.EDU>
    • 1995-11-09 (Thu, 9 Nov 1995 09:52:24 +0800) - Re: PGP Comment feature weakens remailer security - Lance Cottrell <loki@obscura.com>
    • 1995-11-09 (Thu, 9 Nov 1995 10:44:36 +0800) - Re: PGP Comment feature weakens remailer security - Raph Levien <raph@CS.Berkeley.EDU>
      • 1995-11-09 (Thu, 9 Nov 1995 22:34:33 +0800) - Re: PGP Comment feature weakens remailer security - “Perry E. Metzger” <perry@piermont.com>
        • 1995-11-09 (Fri, 10 Nov 1995 02:20:49 +0800) - Small keysizes do make sense (was PGP Comment weakens…) - Raph Levien <raph@CS.Berkeley.EDU>
          • 1995-11-09 (Fri, 10 Nov 1995 04:32:17 +0800) - Re: Small keysizes do make sense (was PGP Comment weakens…) - “Perry E. Metzger” <perry@piermont.com>
            • 1995-11-09 (Fri, 10 Nov 1995 06:03:59 +0800) - Re: Small keysizes do make sense (was PGP Comment weakens…) - Raph Levien <raph@CS.Berkeley.EDU>
          • 1995-11-10 (Sat, 11 Nov 1995 01:45:44 +0800) - Re: Small keysizes do make sense (was PGP Comment weakens…) - Andreas Bogk <andreas@artcom.de>
        • 1995-11-09 (Fri, 10 Nov 1995 05:56:29 +0800) - Re: PGP Comment feature weakens remailer security - Jon Lasser <jlasser@rwd.goucher.edu>
  • 1995-11-09 (Thu, 9 Nov 1995 08:54:31 +0800) - Re: PGP Comment feature weakens remailer security - NetSurfer <netsurf@pixi.com>
  • 1995-11-09 (Thu, 9 Nov 1995 22:15:26 +0800) - Mime/multipart (was Re: PGP Comment feature weakens remailer security) - Laurent Demailly <dl@hplyot.obspm.fr>
    • 1995-11-09 (Fri, 10 Nov 1995 02:10:07 +0800) - Re: Mime/multipart (was Re: PGP Comment feature weakens remailer security) - Raph Levien <raph@CS.Berkeley.EDU>