I tried XORing two encrypted osos images, as I had had the same suspicion (key reuse), but the "entropy" tool in the linxu4nano svn still gave a high number (7.9 at least) for the output, which it shouldn't have if the key was reused, a stream cipher was used, and I xor'd the files properly. However, since the checksums don't seem to be checked, it would seem that code injection (if we knew part of the plaintext and its location), is in fact possible. I mention this in comments on the crypto synthesis page.
_______________________________________________ Linux4nano-dev mailing list [EMAIL PROTECTED] https://mail.gna.org/listinfo/linux4nano-dev http://www.linux4nano.org
