> ALL hashes are prone to the "birthday attack". The question becomes
> seeing if code that will generate the same hash when piped through
> the hashing function will get you anywhere (i.e. result in a
> compromise).
>
Attacking the hash is far more work than is required to "get around" a hash
software restriction, as I mentioned in my other post. Hash rules should be
used for allowing software than would otherwise be disallowed because of
software restriction default policy (a disallow policy) as opposed to
disallowing software under an allow policy.

Laura

------------------------------------------------------------------------
-----
*** Wireless LAN Policies for Security & Management - NEW White Paper ***
Just like wired networks, wireless LANs require network security policies
that are enforced to protect WLANs from known vulnerabilities and threats.
Learn to design, implement and enforce WLAN security policies to lockdown enterprise WLANs.

To get your FREE white paper visit us at:
http://www.securityfocus.com/AirDefense-focus-ms
------------------------------------------------------------------------
------

[ reply ]