[Ach] VPN related thoughts
iang at iang.org
Tue Nov 26 15:49:17 CET 2013
On 25/11/13 20:34 PM, Daniel.Kovacic at a-trust.at wrote:
>>> * The cipher listing in the OpenVPN section of "available and
>>> recommended" ciphers doesn't include Blowfish (BF-CBC). Why?
>> I think the direct reason was that even Schneier doesn't recommend using
> blowfish anymore. Plus we want to keep the ciphersuites > in sync with the
> other software. Plus that section still is in flux.
> Why does Schneuer not recommend blowfish anymore?
1990s generation, a competitor to DES, t-DES and IDEA. Just old. I
can't recall but it is probably an 8-byte cipher which means it is
vulnerable to rainbow tables.
More information about the Ach