[4920] in cryptography@c2.net mail archive
Re: hushmail security
daemon@ATHENA.MIT.EDU (anon11800@hushmail.com)
Mon Jun 21 14:36:13 1999
From: anon11800@hushmail.com
Date: Mon Jun 21 11:29:17 GMT+02:00 1999
To: anon3054@hushmail.com
Cc: cryptography@c2.net
On Wed, 16 Jun -1 anon3054@hushmail.com wrote:
> This much I've got working. However as noted in my other message, you
> can't cold-connect to hushmail. You have to first log in and get (via
> SSL) a session ID and Blowfish session key, which you use to encrypt
> your communication.
What happens to users of export grade browsers, do they transmit the
Blowfish key using RC4-40? That would be incredibly stupid, wouldn't it?
Get HushMail. The world's first free, fully encrypted, web-based email system.
Speak freely with HushMail.... http://www.hushmail.com
