Date: Thu, 30 Sep 2004 21:17:20 +0200
From: Andrea Arcangeli <andrea@novell.com>
To: Pavel Machek <pavel@suse.cz>
Cc: Nigel Cunningham <ncunningham@linuxmail.org>,
       Alan Cox <alan@lxorguk.ukuu.org.uk>, Chris Wright <chrisw@osdl.org>,
       Jeff Garzik <jgarzik@pobox.com>,
       Linux Kernel Mailing List <linux-kernel@vger.kernel.org>,
       Andrew Morton <akpm@osdl.org>
Subject: Re: mlock(1)
Message-ID: <20040930191720.GB32279@dualathlon.random>
References: <20040924132247.W1973@build.pdx.osdl.net> <1096060045.10800.4.camel@localhost.localdomain> <20040924225900.GY3309@dualathlon.random> <1096069581.3591.23.camel@desktop.cunninghams> <20040925010759.GA3309@dualathlon.random> <1096114881.5937.18.camel@desktop.cunninghams> <20040925145315.GJ3309@dualathlon.random> <20040928084850.GA18819@elf.ucw.cz> <20040930174244.GL22008@dualathlon.random> <20040930185447.GC475@openzaurus.ucw.cz>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20040930185447.GC475@openzaurus.ucw.cz>
User-Agent: Mutt/1.5.6i
Sender: linux-kernel-owner@vger.kernel.org
Content-Length: 831
Lines: 19

On Thu, Sep 30, 2004 at 08:54:47PM +0200, Pavel Machek wrote:
> Actually if your cipher is not resistant to known plaintext attack,

AFIK the only way to make it resistent to a brute force is to make it
slow, like adding lots of bits of salt.

> you have other problems anyway. There's a lot of nearly-lnown data 
> (like name of process with pid 1) that single 32bit zero is no problem.

You could fix that later, by changing the offset randomly before writing
it to disk.

My point is very simple, that is if you leave a zero as part of the API,
then you're making things less secure.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/