Subj : Binkd and TLS
To   : Alan Ianson
From : Michiel van der Vlist
Date : Sun Dec 22 2019 10:18 am

Hello Alan,

On Saturday December 21 2019 14:00, you wrote to me:

 AI>>>>> Maybe I said that wrong. How about this. Binkd's CRYPT option
 AI>>>>> is weak (by todays standards).

 MV>>>> In what way is it weak? Has it been cracked?

 AI>>> Yes, many years ago.

 MV>> In the context of Fidonet or in the context of PkZip?

 AI> That algorithm. The same is true of the algorithm used by rar. The
 AI> folks behind the rar archiver may has changed the algrithm they use
 AI> today, I don't know.

Is there a documented case of someone successfully gaining unauthorised access 
to the secure inbound of a Fidenet node by breaking the algoritm and doing any 
harm that way?

Is there a documented case of anyone listening in on the stream by breaking the 
algoritm and causing any harm that way?

 AI> I still think the TLS option would serve us well.

I say for Fidonet it is shooting a canon at a musquito.

 AI> Too much of a good thing?

Too much hassle for the added value.


Cheers, Michiel

--- GoldED+/W32-MSVC 1.1.5-b20170303
 * Origin: http://www.vlist.eu (2:280/5555)

.