jetlib.sec » Full Disclosure » Re: RSA and random number generation

Feeds

133122 items (0 unread) in 27 feeds

• 1337day (was: Inj3ct0r, 1337db)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

Full Disclosure

• February 22, 2012
• 

  Re: RSA and random number generation

  Posted: February 22nd, 2012, 9:54am PST

  Tags:   

  Posted by Valdis . Kletnieks on Feb 22

  On Wed, 22 Feb 2012 09:09:46 +1100, Ramo said:
  
  As an interesting crypto research item, it's actually very good work.
  
  However, for those of us in the trenches, it's mostly a non-issue, actually -
  see Dan Kaminsky's analysis of the actual situation:
  http://dankaminsky.com/2012/02/17/primalfear/
  
  Bottom line: The bug allows you to MITM the same embedded webservers
  in routers and wireless boxes that you were *already* able to easily...