[19] in The Cryptographic File System users list
Re: Problem with cname / ccat
daemon@ATHENA.MIT.EDU (Rob Stampfli)
Sun Dec 21 21:40:22 1997
From owner-cfs-users@research.att.com Sun Dec 21 21:40:21 1997
Received: from rumor.research.att.com (rumor.research.att.com [192.20.225.9]) by bloom-picayune.MIT.EDU (8.7.6/2.3JIK) with SMTP id VAA03911 for <cfs-mtg@bloom-picayune.mit.edu>; Sun, 21 Dec 1997 21:40:20 -0500
Received: from research.att.com ([135.207.30.100]) by rumor; Sun Dec 21 21:37:15 EST 1997
Received: from amontillado.research.att.com ([135.207.24.32]) by research-clone; Sun Dec 21 21:37:18 EST 1997
Received: from nsa.research.att.com (majordomo@nsa.research.att.com [135.207.24.155])
by amontillado.research.att.com (8.8.7/8.8.7) with ESMTP id VAA24473;
Sun, 21 Dec 1997 21:37:14 -0500 (EST)
Received: (from majordomo@localhost) by nsa.research.att.com (8.7.3/8.7.3) id VAA20239 for cfs-users-list; Sun, 21 Dec 1997 21:37:26 -0500 (EST)
X-Authentication-Warning: nsa.research.att.com: majordomo set sender to owner-cfs-users@nsa.research.att.com using -f
Received: from research.att.com (research-clone.research.att.com [135.207.30.100]) by nsa.research.att.com (8.7.3/8.7.3) with SMTP id VAA20207 for <cfs-users@nsa.research.att.com>; Sun, 21 Dec 1997 21:37:24 -0500 (EST)
Received: from elektro.cmhnet.org ([192.188.133.3]) by research-clone; Sun Dec 21 21:36:47 EST 1997
Received: from colnet by elektro.cmhnet.org with uucp
(Smail3.1.29.1 #1) id m0xjxjf-0000w4C; Sun, 21 Dec 97 21:36 EST
Received: by colnet.cmhnet.org (Smail3.1.28.1 #4)
id m0xjxg3-0008FNC; Sun, 21 Dec 97 21:33 EST
Message-Id: <m0xjxg3-0008FNC@colnet.cmhnet.org>
Date: Sun, 21 Dec 97 21:33 EST
From: res@colnet.cmhnet.org (Rob Stampfli)
To: Matt Blaze <elektro!nsa.research.att.com!mab@research.att.com>
Cc: cfs-users@research.att.com
Subject: Re: Problem with cname / ccat
Sender: owner-cfs-users@research.att.com
Precedence: bulk
>This isn't a bug. The problem is that you forgot to specify -1 on
>the cname command, so it's using the default cipher of 3des.
Matt,
I must profess to be a bit red faced for not looking at the source -- at
least the easy-to-understand part which parses the arguments. It is clear
enough from that what the default is. I must point out in my defense,
however, that I was working from the man page, which still states the default
is hybrid-mode single-DES. In fact, the command itself doesn't emit '-1' as
an option on its usage message.
I first noticed the problem when I couldn't get cname/ccat to work on the
contents of my real encrypted directory, and in attempting to isolate the
reason, I wound up naively selecting symmetric passwords for several of
the test cases, which led me to suspect the problem was more involved.
There's a lesson to be learned about selecting reasonable test cases in
there somewhere, but I just wanted a password I could remember.
Anyway, thanks again for reopening the list, and thanks for the speedy
resolution. I delight in using cfs daily, and find it a generally robust
little package (and further proof that the best things in life ARE free!).
I hope this didn't take too much of your time from enjoying the holidays.
Rob
