[cap-talk] Why petnames should not be used for password hashes.

Ben Laurie ben at algroup.co.uk
Tue Aug 23 06:26:22 EDT 2005


Ian G wrote:
> In practice, the flaw here is the deliberate
> discrimination of "TLS for commercial purposes"
> which has resulted in most of the web being
> insecured and led inevitably to phishing due
> to poor and infrequent use of TLS for security
> purposes.

Dude, how can you argue on one list that TLS does nothing for phishing, 
then blame its lack of use for the same problem on another?

Cheers,

Ben.

-- 
http://www.apache-ssl.org/ben.html       http://www.thebunker.net/

"There is no limit to what a man can do or how far he can go if he
doesn't mind who gets the credit." - Robert Woodruff


More information about the cap-talk mailing list