Richard Welty wrote: > On Mon, 10 Mar 2003 09:16:20 +0000 Giuliano Gavazzi <eximlists@???> wrote:
>
>>I was just concerned about password protection. I hope RC4
>>vulnerability still requires a pretty determined person and that the
>>tools to break it do not come shrink-wrapped off the shelves.
>
>
> for an extremely short transaction, there's not much text to attack.
I'm not an crypto-expert, but I think the general problem with ESTMP-TLS
is that some of the text is known.
So one can MAYBE run a known-plaintext attack against the encryption,
but like I said, I'm not an expert in this field :)
