[ale] The NSA has compromised httpd,ssh,TLS/SSL, and secure chat
Charles Shapiro
hooterpincher at gmail.com
Fri Sep 6 10:06:55 EDT 2013
But not gpg, according to the NYT (
http://www.nytimes.com/2013/09/06/us/nsa-foils-much-internet-encryption.html?hp&_r=0).
My read of the article is that most of the compromises involve
getting
access to keys through vendors, rather than compromises of the actual
algorithms, although there are some hints that the NSA has tried to subvert
standards as well.
Moral of the story: Use FOSS, don't trust any service providers.
-- CHS
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.ale.org/pipermail/ale/attachments/20130906/ccf69fd0/attachment.html>
More information about the Ale
mailing list