[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: invalid syntax when teletexstring

To: Michael Ströder <michael@stroeder.com>
Subject: Re: invalid syntax when teletexstring
From: Howard Chu <hyc@symas.com>
Date: Thu, 28 Jul 2011 14:17:19 -0700
Cc: openldap-technical@openldap.org
In-reply-to: <4E31CD40.6070607@stroeder.com>
References: <4E2EA778.9010504@flexsecure.de> <4E31A61A.6020600@ayni.com> <hbf.20110728hcei@bombur.uio.no> <4E31C48F.6090306@symas.com> <4E31CD40.6070607@stroeder.com>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:7.0a1) Gecko/20110612 Firefox/7.0a1 SeaMonkey/2.4a1

Michael Ströder wrote:

Howard Chu wrote:

Nobody should be using T.61 any more, they should be using UTF-8.


That's right indeed. But think of ancient root CA certs with a long validity
period to be stored in a LDAP server.

Yes, a frightening thought. A cert that old was probably generated using akeypair that is small enough to be easily cracked on a modern computer.


768-bit RSA keys were successfully brute-forced over a year ago.
http://arstechnica.com/security/news/2010/01/768-bit-rsa-cracked-1024-bit-safe-for-now.ars

--
  -- Howard Chu
  CTO, Symas Corp.           http://www.symas.com
  Director, Highland Sun     http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/

References:
- invalid syntax when teletexstring
  - From: Vangelis Karatsiolis <karatsiolis@flexsecure.de>
- Re: invalid syntax when teletexstring
  - From: anax <anax@ayni.com>
- Re: invalid syntax when teletexstring
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
- Re: invalid syntax when teletexstring
  - From: Howard Chu <hyc@symas.com>
- Re: invalid syntax when teletexstring
  - From: Michael Ströder <michael@stroeder.com>

Prev by Date: Re: invalid syntax when teletexstring
Next by Date: OpenLDAP is using lots of memory
Index(es):
- Chronological
- Thread