How to stop future viruses.
Steven M. Bellovin
smb at ulysses.homer.nj.att.com
Fri Nov 11 02:18:14 AEST 1988
In article <778 at mailrus.cc.umich.edu>, honey at mailrus.cc.umich.edu (peter honeyman) writes:
> where did you store the gigabyte file? how long did it take to
> generate it? (25,000 word dictionary, 4,096 salts, 11 byte output
> each.)
You don't need to use all 4096 salts; you simply need the ones used
on the target system. On my system, for example, that reduces the
storage needed by a factor of about 20, which makes it easily manageable.
One key mistake made in the encryption algorithm design is that a cracker
can take shortcuts to speed up the encryption. One of the slowest parts
of DES (in software) is the initial and final permutations. These are
inverses of each other, however, which means that when iterating DES
the inverse permutation of step I and the permutation of step I+1 cancel
out, and can be omitted. Thus, only one initial permutation, and one
final permutation, are needed, rather than 25 of each. (This isn't my
idea, by the way; I know I've seen it elsewhere, probably in the fdes
package posted to the net a few years ago.)
More information about the Comp.unix.wizards
mailing list