Message162758
secure_compare leaks the password always. Note that it takes different time to create a result of ord() depending whether it's <=100 or > 100 due to caching of small numbers. Such functions should be written in C. |
|
Date |
User |
Action |
Args |
2012-06-14 08:33:04 | fijall | set | recipients:
+ fijall, christian.heimes |
2012-06-14 08:33:03 | fijall | set | messageid: <1339662783.79.0.89743319374.issue15061@psf.upfronthosting.co.za> |
2012-06-14 08:33:03 | fijall | link | issue15061 messages |
2012-06-14 08:33:02 | fijall | create | |
|