Slashdot Mirror

← Back to Stories (view on slashdot.org)

Schneier et al Report PGP Vulnerability

Posted by timothy on from the speak-plainly dept.

SpaceTaxi writes: "Researchers reported that they were able to intercept and modify a PGP encrypted message so that, IF it is sent back to the attacker, the original message could be read by the attacker." The paper comes from Kahil Jallad, Jonathan Katz, and Bruce Schneier. Here is the Yahoo! article.

4 of 204 comments (clear)

  1. Katz by krog · · Score: 1, Offtopic

    i'm not sure, but i think he's been spending a little vacation with some hacker friends in Afghanistan.

    --
    Cretin - a powerful and flexible CD reencoder
  2. Re:Katz? by RealTimeFreeAgent · · Score: 0, Offtopic

    He learned all he needed to know about cryptography from his Afghan hacker buddy, Junis.

    --
    "You get what you pay for after all." --
  3. Flash Player bugs open Windows/Unix to attack by burgburgburg · · Score: 0, Offtopic

    A news.com article discusses two separate new flaws found in Flash Player. One allows malicious code to be run on Windows/Unix OSes. The other allows an attacker to read files on a person's local hard drive. For the first flaw, All Windows and Unix versions of Flash Player before 6,0,40,0, are affected. Any application capable of reading SWF files (email, instant messenger, browser) can be used. For the second, it relies on the XML functionality of Flash Player 6 and tricks the browser into reading local files.

  4. Yahoo Links by cheinonen · · Score: 1, Offtopic

    I know it's off topic, but since everyone seems to have pop-ups here with such a passion, why doesn't Slashdot adopt a policy to not link to stories (like this) at Yahoo!, who has pop-ups, and instead only link to sites that are pop-up free? I'm sure this story is going to be picked up by many other sites, but Yahoo! will get all that traffic, and keep serving up the pop-up ads, as we all go there.