geeman@best.com
Thu, 14 May 1998 22:53:49 -0700
What's amusing about this is that not only is the passphrase or whatnot out
there on the drive because of swapping, but, hmmmm... wonder what **DATA**
is out there that you wish/thought/imagined you encrypted?
At 08:38 PM 5/14/98 -0400, Vin McLellan wrote:
> Bruce Schneier <schneier@counterpane.com> reported:
>
>>According to Larry in Tech Support at Security Dynamics, Version 2.0 of
>>>RSA SecurPC fixed this and the password is now stored encrypted,
>>>whereas, yes, in earlier versions it could be located and read.
>
> Errant nonsense. Larry was misinformed and misinformed you. SDTI
>and RSA have been all over this for days. The swap problem is real. The
>problem is acknowledged as such, and a fix is in the works. Hopefully, any
>other call to SDTI (for whom I'm a dime-a-day consultant) will find someone
>properly informed.
>
> Eo nomine, humble apologies are offered.
>
> Everyone I've talked to at SDTI and RSA is taking this very
>seriously. You should not have had to deal with this sort of silliness.
>
> Suerte,
> _Vin
>
>
>
>-----
> Vin McLellan + The Privacy Guild + <vin@shore.net>
> 53 Nichols St., Chelsea, MA 02150 USA <617> 884-5548
> -- <@><@> --
>
>
>
>
The following archive was created by hippie-mail 7.98617-22 on Fri Aug 21 1998 - 17:17:24 ADT