Re: RSA's SecurPC not-so-"Secur"

Vin McLellan (vin@shore.net)
Thu, 14 May 1998 20:38:44 -0400

• Next message: Black Unicorn: "Re: RSA's SecurPC not-so-"Secur""
• Previous message: MJG - crypto lists: "RE: RSA's SecurPC not-so-"Secur""
• Maybe in reply to: staym@accessdata.com: "RSA's SecurPC not-so-"Secur""
• Next in thread: Black Unicorn: "Re: RSA's SecurPC not-so-"Secur""
• Reply: Black Unicorn: "Re: RSA's SecurPC not-so-"Secur""
• Reply: William H. Geiger III: "Re: RSA's SecurPC not-so-"Secur""

        Bruce Schneier <schneier@counterpane.com> reported:

>According to Larry in Tech Support at Security Dynamics, Version 2.0 of
>>RSA SecurPC fixed this and the password is now stored encrypted,
>>whereas, yes, in earlier versions it could be located and read.

        Errant nonsense. Larry was misinformed and misinformed you. SDTI
and RSA have been all over this for days. The swap problem is real. The
problem is acknowledged as such, and a fix is in the works. Hopefully, any
other call to SDTI (for whom I'm a dime-a-day consultant) will find someone
properly informed.

        Eo nomine, humble apologies are offered.

        Everyone I've talked to at SDTI and RSA is taking this very
seriously. You should not have had to deal with this sort of silliness.

        Suerte,
                _Vin

-----
      Vin McLellan + The Privacy Guild + <vin@shore.net>
  53 Nichols St., Chelsea, MA 02150 USA <617> 884-5548
                         -- <@><@> --

• Next message: Black Unicorn: "Re: RSA's SecurPC not-so-"Secur""
• Previous message: MJG - crypto lists: "RE: RSA's SecurPC not-so-"Secur""
• Maybe in reply to: staym@accessdata.com: "RSA's SecurPC not-so-"Secur""
• Next in thread: Black Unicorn: "Re: RSA's SecurPC not-so-"Secur""
• Reply: Black Unicorn: "Re: RSA's SecurPC not-so-"Secur""
• Reply: William H. Geiger III: "Re: RSA's SecurPC not-so-"Secur""