[Ach] VPN related thoughts

ianG iang at iang.org
Tue Nov 26 15:49:17 CET 2013

On 25/11/13 20:34 PM, Daniel.Kovacic at a-trust.at wrote:
>>> * The cipher listing in the OpenVPN section of "available and
>>> recommended" ciphers doesn't include Blowfish (BF-CBC). Why?
>> I think the direct reason was that even Schneier doesn't recommend using
> blowfish anymore. Plus we want to keep the ciphersuites > in sync with the
> other software. Plus that section still is in flux.
> Why does Schneuer not recommend blowfish anymore?

1990s generation, a competitor to DES, t-DES and IDEA.  Just old.  I 
can't recall but it is probably an 8-byte cipher which means it is 
vulnerable to rainbow tables.


More information about the Ach mailing list