And now we see this when you go to the page...
very interesting.
nick
---begin---
NOTICE OF UNAUTHORIZED SOFTWARE
An unauthorized copy of Nullsoft's copyrighted software was briefly posted on this website on or about Wednesday May 28,
2003. The software was identified as WASTE (the Software) and
bear [EMAIL PROTECTED] writes:
On 30 May 2003, Eric Rescorla wrote:
Bill Stewart [EMAIL PROTECTED] writes:
(1) They use MD5 instead of HMAC for message authentication. Scary.
If MD5 itself is to be trusted as a hash function, this is not
particularly scary. They are using MD5 over
It's utterly baffling to me why people like this choose to design
their own thing rather than just using SSL.
Totally agree. At this point in time, if it's a TCP based protocol
and it isn't built on SSL/TLS, it should pretty much be treated
as snake oil, I'd say. Perhaps some kind of