On Friday 16 November 2007 15:10, Michael Rogers wrote: > Matthew Toseland wrote: > > Could be bundled with a copy of the node on a USB key. > > This is a great idea - it could also be exchanged over IM etc. > > > http://en.wikipedia.org/wiki/Secure_remote_password_protocol > > This looks very cool, but you just know people will send the password by > email or IM. I've spent most of the day trying to exchange a password > with someone who doesn't have encrypted email, so I know how strong the > temptation is. ;-) > > Public key fingerprints are much more secure, even if you chop them down > to 16 bytes to make them easier to exchange.
Public key fingerprints are very difficult to turn into something that is secure from all angles, and is short. > > Cheers, > Michael -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: <https://emu.freenetproject.org/pipermail/devl/attachments/20071116/4dd7125d/attachment.pgp>
