summaryrefslogtreecommitdiff
path: root/pipermail/pycrypto/attachments/20111111/d48df023/attachment.htm
blob: 643e798700af7f5adedcd93bfeca27be2ddabe66 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108

<tt>
Yes,&nbsp;I&nbsp;agree&nbsp;100%,&nbsp;this&nbsp;is&nbsp;something&nbsp;I&amp;#39;m&nbsp;not&nbsp;taking&nbsp;lightly,&nbsp;that&amp;#39;s&nbsp;why&nbsp;I&amp;#39;m&nbsp;trying&nbsp;to&nbsp;get&nbsp;it&nbsp;right&nbsp;the&nbsp;first&nbsp;time&nbsp;:).&lt;div&gt;&lt;br&gt;&lt;/div&gt;&lt;div&gt;Ill&nbsp;checkout&nbsp;your&nbsp;link,&nbsp;thank&nbsp;you&nbsp;very&nbsp;much&nbsp;for&nbsp;your&nbsp;input.&lt;/div&gt;&lt;div&gt;&lt;br&gt;<br>
&lt;/div&gt;&lt;div&gt;J&lt;br&gt;&lt;br&gt;&lt;div&nbsp;class=&quot;gmail_quote&quot;&gt;On&nbsp;Fri,&nbsp;Nov&nbsp;11,&nbsp;2011&nbsp;at&nbsp;5:54&nbsp;AM,&nbsp;Imran&nbsp;Azad&nbsp;&lt;span&nbsp;dir=&quot;ltr&quot;&gt;&amp;lt;&lt;a&nbsp;href=&quot;mailto:Imran.Azad@bthft.nhs.uk&quot;&gt;Imran.Azad@bthft.nhs.uk&lt;/a&gt;&amp;gt;&lt;/span&gt;&nbsp;wrote:&lt;br&gt;&lt;blockquote&nbsp;class=&quot;gmail_quote&quot;&nbsp;style=&quot;margin:0&nbsp;0&nbsp;0&nbsp;.8ex;border-left:1px&nbsp;#ccc&nbsp;solid;padding-left:1ex;&quot;&gt;<br>
<br>
<br>
<br>
<br>
<br>
&lt;div&nbsp;lang=&quot;EN-GB&quot;&nbsp;link=&quot;blue&quot;&nbsp;vlink=&quot;purple&quot;&gt;<br>
&lt;b&gt;&lt;font&nbsp;size=&quot;2&quot;&nbsp;face=&quot;Verdana&quot;&gt;Please&nbsp;note&nbsp;my&nbsp;new&nbsp;email&nbsp;address&nbsp;&lt;a&nbsp;href=&quot;mailto:Imran.Azad@bthft.nhs.uk&quot;&nbsp;target=&quot;_blank&quot;&gt;Imran.Azad@bthft.nhs.uk&lt;/a&gt;&lt;/font&gt;&lt;/b&gt;&lt;br&gt;<br>
&lt;br&gt;<br>
&lt;div&gt;<br>
&lt;div&gt;<br>
&lt;p&nbsp;class=&quot;MsoNormal&quot;&gt;&lt;span&nbsp;style=&quot;font-size:11.0pt;color:#1F497D&quot;&gt;John,&lt;/span&gt;&lt;/p&gt;<br>
&lt;p&nbsp;class=&quot;MsoNormal&quot;&gt;&lt;span&nbsp;style=&quot;font-size:11.0pt;color:#1F497D&quot;&gt; &lt;/span&gt;&lt;/p&gt;<br>
&lt;p&nbsp;class=&quot;MsoNormal&quot;&gt;&lt;span&nbsp;style=&quot;font-size:11.0pt;color:#1F497D&quot;&gt;I&nbsp;don’t&nbsp;mean&nbsp;to&nbsp;steal&nbsp;your&nbsp;thunder,&nbsp;I&nbsp;noticed&nbsp;you&nbsp;asked&nbsp;a&nbsp;question&nbsp;about&nbsp;the&nbsp;suitability&nbsp;of&nbsp;public&nbsp;key&nbsp;cryptography&nbsp;for&nbsp;file&nbsp;encryption&nbsp;and&nbsp;the&nbsp;use&nbsp;of&nbsp;padding.<br>
&nbsp;Unless&nbsp;one&nbsp;is&nbsp;an&nbsp;expert&nbsp;in&nbsp;cryptography&nbsp;I&nbsp;don’t&nbsp;think&nbsp;it’s&nbsp;a&nbsp;good&nbsp;idea&nbsp;to&nbsp;encrypt&nbsp;sensitive&nbsp;data&nbsp;using&nbsp;your&nbsp;own&nbsp;scheme&nbsp;as&nbsp;cryptography&nbsp;is&nbsp;very&nbsp;easy&nbsp;to&nbsp;get&nbsp;wrong&nbsp;with&nbsp;catastrophic&nbsp;consequences,&nbsp;even&nbsp;‘experts’&nbsp;make&nbsp;mistakes.&nbsp;Rather&nbsp;it&nbsp;would&nbsp;be&nbsp;safer&nbsp;to&nbsp;use&nbsp;an<br>
&nbsp;established&nbsp;scheme,&nbsp;you&nbsp;also&nbsp;need&nbsp;to&nbsp;think&nbsp;about&nbsp;the&nbsp;integrity&nbsp;of&nbsp;what&nbsp;you&nbsp;are&nbsp;encrypting&nbsp;–&nbsp;although&nbsp;you&nbsp;may&nbsp;have&nbsp;taken&nbsp;this&nbsp;into&nbsp;account.&nbsp;I&nbsp;am&nbsp;not&nbsp;an&nbsp;expert&nbsp;in&nbsp;cryptography&nbsp;and&nbsp;I&nbsp;appreciate&nbsp;and&nbsp;admire&nbsp;the&nbsp;work&nbsp;that&nbsp;has&nbsp;gone&nbsp;into&nbsp;PyCrypto.&nbsp;I&nbsp;am&nbsp;speaking&nbsp;from<br>
&nbsp;past&nbsp;experiences&nbsp;and&nbsp;I&nbsp;thought&nbsp;I&nbsp;would&nbsp;share&nbsp;these&nbsp;with&nbsp;you.&lt;/span&gt;&lt;/p&gt;<br>
&lt;p&nbsp;class=&quot;MsoNormal&quot;&gt;&lt;span&nbsp;style=&quot;font-size:11.0pt;color:#1F497D&quot;&gt; &lt;/span&gt;&lt;/p&gt;<br>
&lt;p&nbsp;class=&quot;MsoNormal&quot;&gt;&lt;span&nbsp;style=&quot;font-size:11.0pt;color:#1F497D&quot;&gt;You&nbsp;may&nbsp;find&nbsp;this&nbsp;link&nbsp;useful:<br>
&lt;a&nbsp;href=&quot;http://security.stackexchange.com/questions/8571/rsa-4096-with-aes-256-encryption-process-using-pycrypto&quot;&nbsp;target=&quot;_blank&quot;&gt;<br>
http://security.stackexchange.com/questions/8571/rsa-4096-with-aes-256-encryption-process-using-pycrypto&lt;/a&gt;&lt;/span&gt;&lt;/p&gt;<br>
&lt;p&nbsp;class=&quot;MsoNormal&quot;&gt;&lt;span&nbsp;style=&quot;font-size:11.0pt;color:#1F497D&quot;&gt; &lt;/span&gt;&lt;/p&gt;<br>
&lt;p&nbsp;class=&quot;MsoNormal&quot;&gt;&lt;span&nbsp;style=&quot;font-size:11.0pt;color:#1F497D&quot;&gt;Kind&nbsp;Regards&lt;/span&gt;&lt;/p&gt;<br>
&lt;p&nbsp;class=&quot;MsoNormal&quot;&gt;&lt;span&nbsp;style=&quot;font-size:11.0pt;color:#1F497D&quot;&gt; &lt;/span&gt;&lt;/p&gt;<br>
&lt;p&nbsp;class=&quot;MsoNormal&quot;&gt;&lt;span&nbsp;style=&quot;font-size:11.0pt;color:#1F497D&quot;&gt; &lt;/span&gt;&lt;/p&gt;<br>
&lt;p&nbsp;class=&quot;MsoNormal&quot;&gt;&lt;b&gt;&lt;span&nbsp;lang=&quot;EN-US&quot;&nbsp;style=&quot;font-size:10.0pt&quot;&gt;From:&lt;/span&gt;&lt;/b&gt;&lt;span&nbsp;lang=&quot;EN-US&quot;&nbsp;style=&quot;font-size:10.0pt&quot;&gt;&nbsp;&lt;a&nbsp;href=&quot;mailto:pycrypto-bounces@lists.dlitz.net&quot;&nbsp;target=&quot;_blank&quot;&gt;pycrypto-bounces@lists.dlitz.net&lt;/a&gt;&nbsp;[mailto:&lt;a&nbsp;href=&quot;mailto:pycrypto-bounces@lists.dlitz.net&quot;&nbsp;target=&quot;_blank&quot;&gt;pycrypto-bounces@lists.dlitz.net&lt;/a&gt;]<br>
&lt;b&gt;On&nbsp;Behalf&nbsp;Of&nbsp;&lt;/b&gt;John&nbsp;Matthew&lt;br&gt;<br>
&lt;b&gt;Sent:&lt;/b&gt;&nbsp;10&nbsp;November&nbsp;2011&nbsp;18:32&lt;/span&gt;&lt;/p&gt;&lt;div&nbsp;class=&quot;im&quot;&gt;&lt;br&gt;<br>
&lt;b&gt;To:&lt;/b&gt;&nbsp;PyCrypto&nbsp;discussion&nbsp;list&lt;br&gt;<br>
&lt;b&gt;Subject:&lt;/b&gt;&nbsp;Re:&nbsp;[pycrypto]&nbsp;Public&nbsp;Key&nbsp;encryption&nbsp;of&nbsp;files&lt;/div&gt;&lt;p&gt;&lt;/p&gt;<br>
&lt;p&nbsp;class=&quot;MsoNormal&quot;&gt; &lt;/p&gt;<br>
&lt;p&nbsp;class=&quot;MsoNormal&quot;&nbsp;style=&quot;margin-bottom:12.0pt&quot;&gt;All&nbsp;good&nbsp;stuff,&nbsp;thanks&nbsp;Dave&lt;/p&gt;<br>
&lt;div&gt;&lt;div&nbsp;class=&quot;im&quot;&gt;<br>
&lt;p&nbsp;class=&quot;MsoNormal&quot;&gt;On&nbsp;Thu,&nbsp;Nov&nbsp;10,&nbsp;2011&nbsp;at&nbsp;10:26&nbsp;AM,&nbsp;Dave&nbsp;Pawson&nbsp;&amp;lt;&lt;a&nbsp;href=&quot;mailto:dave.pawson@gmail.com&quot;&nbsp;target=&quot;_blank&quot;&gt;dave.pawson@gmail.com&lt;/a&gt;&amp;gt;&nbsp;wrote:&lt;/p&gt;<br>
&lt;/div&gt;&lt;div&gt;&lt;div&gt;&lt;/div&gt;&lt;div&nbsp;class=&quot;h5&quot;&gt;&lt;div&gt;<br>
&lt;p&nbsp;class=&quot;MsoNormal&quot;&nbsp;style=&quot;margin-bottom:12.0pt&quot;&gt;On&nbsp;10&nbsp;November&nbsp;2011&nbsp;18:18,&nbsp;Dean&nbsp;Macinskas&nbsp;&amp;lt;&lt;a&nbsp;href=&quot;mailto:dmacinskas@geobridge.net&quot;&nbsp;target=&quot;_blank&quot;&gt;dmacinskas@geobridge.net&lt;/a&gt;&amp;gt;&nbsp;wrote:&lt;br&gt;<br>
&amp;gt;&nbsp;All&nbsp;blocks&nbsp;need&nbsp;to&nbsp;be&nbsp;16&nbsp;bytes.&nbsp; So&nbsp;for&nbsp;example,&nbsp;if&nbsp;the&nbsp;file&nbsp;is&nbsp;2,000,005&lt;br&gt;<br>
&amp;gt;&nbsp;bytes,&nbsp;you&amp;#39;d&nbsp;encrypt&nbsp;125,000&nbsp;16-byte&nbsp;blocks;&nbsp;you&nbsp;then&nbsp;have&nbsp;5&nbsp;bytes&nbsp;left&lt;br&gt;<br>
&amp;gt;&nbsp;over,&nbsp;to&nbsp;which&nbsp;you&amp;#39;d&nbsp;add&nbsp;11&nbsp;padding&nbsp;bytes,&nbsp;which&nbsp;can&nbsp;be&nbsp;any&nbsp;binary&nbsp;value&nbsp;and&lt;br&gt;<br>
&amp;gt;&nbsp;then&nbsp;encrypt&nbsp;that&nbsp;last&nbsp;block.&lt;br&gt;<br>
&lt;br&gt;<br>
&lt;/p&gt;<br>
&lt;/div&gt;<br>
&lt;p&nbsp;class=&quot;MsoNormal&quot;&gt;def&nbsp;_lazysecret(secret,&nbsp;blocksize=32,&nbsp;padding=&amp;#39;}&amp;#39;):&lt;br&gt;<br>
 &nbsp; &amp;quot;&amp;quot;&amp;quot;pads&nbsp;secret&nbsp;if&nbsp;not&nbsp;legal&nbsp;AES&nbsp;block&nbsp;size&nbsp;(16,&nbsp;24,&nbsp;32)&amp;quot;&amp;quot;&amp;quot;&lt;br&gt;<br>
 &nbsp; if&nbsp;not&nbsp;len(secret)&nbsp;in&nbsp;(16,&nbsp;24,&nbsp;32):&lt;br&gt;<br>
 &nbsp; &nbsp; &nbsp; return&nbsp;secret&nbsp;+&nbsp;(blocksize&nbsp;-&nbsp;len(secret))&nbsp;*&nbsp;padding&lt;br&gt;<br>
 &nbsp; return&nbsp;secret&lt;br&gt;<br>
&lt;br&gt;<br>
Python&nbsp;makes&nbsp;it&nbsp;quite&nbsp;easy.&lt;br&gt;<br>
 The&nbsp;reason&nbsp;I&nbsp;started&nbsp;to&nbsp;use&nbsp;it!&lt;br&gt;<br>
Thanks&nbsp;to&lt;br&gt;<br>
src&nbsp;&lt;a&nbsp;href=&quot;http://www.turnkeylinux.org/blog/python-symmetric-encryption&quot;&nbsp;target=&quot;_blank&quot;&gt;<br>
http://www.turnkeylinux.org/blog/python-symmetric-encryption&lt;/a&gt;&lt;br&gt;<br>
&lt;br&gt;<br>
great&nbsp;piece&nbsp;of&nbsp;software.&lt;br&gt;<br>
&lt;br&gt;<br>
regards&lt;br&gt;<br>
&lt;span&nbsp;style=&quot;color:#888888&quot;&gt;&lt;br&gt;<br>
&lt;br&gt;<br>
&lt;br&gt;<br>
--&lt;br&gt;<br>
Dave&nbsp;Pawson&lt;br&gt;<br>
XSLT&nbsp;XSL-FO&nbsp;FAQ.&lt;br&gt;<br>
Docbook&nbsp;FAQ.&lt;br&gt;<br>
&lt;a&nbsp;href=&quot;http://www.dpawson.co.uk&quot;&nbsp;target=&quot;_blank&quot;&gt;http://www.dpawson.co.uk&lt;/a&gt;&lt;/span&gt;&lt;/p&gt;<br>
&lt;div&gt;<br>
&lt;div&gt;<br>
&lt;p&nbsp;class=&quot;MsoNormal&quot;&gt;_______________________________________________&lt;br&gt;<br>
pycrypto&nbsp;mailing&nbsp;list&lt;br&gt;<br>
&lt;a&nbsp;href=&quot;mailto:pycrypto@lists.dlitz.net&quot;&nbsp;target=&quot;_blank&quot;&gt;pycrypto@lists.dlitz.net&lt;/a&gt;&lt;br&gt;<br>
&lt;a&nbsp;href=&quot;http://lists.dlitz.net/cgi-bin/mailman/listinfo/pycrypto&quot;&nbsp;target=&quot;_blank&quot;&gt;http://lists.dlitz.net/cgi-bin/mailman/listinfo/pycrypto&lt;/a&gt;&lt;/p&gt;<br>
&lt;/div&gt;<br>
&lt;/div&gt;<br>
&lt;/div&gt;&lt;/div&gt;&lt;/div&gt;<br>
&lt;p&nbsp;class=&quot;MsoNormal&quot;&gt; &lt;/p&gt;<br>
&lt;/div&gt;<br>
&lt;/div&gt;<br>
&lt;font&nbsp;size=&quot;2&quot;&nbsp;face=&quot;Verdana&quot;&gt;<br>
&lt;p&gt;Imran&nbsp;Azad&lt;br&gt;<br>
Web&nbsp;Content&nbsp;Manager&lt;br&gt;<br>
Bradford&nbsp;Teaching&nbsp;Hospitals&nbsp;NHS&nbsp;Foundation&nbsp;Trust&lt;br&gt;<br>
&lt;br&gt;<br>
Tel:&nbsp;01274&nbsp;38&nbsp;3556&lt;br&gt;<br>
Mob:&nbsp;07535660951&lt;br&gt;<br>
Internet:&nbsp;&lt;a&nbsp;href=&quot;http://www.bradfordhospitals.nhs.uk&quot;&nbsp;target=&quot;_blank&quot;&gt;http://www.bradfordhospitals.nhs.uk&lt;/a&gt;&lt;br&gt;<br>
&lt;/p&gt;<br>
&lt;/font&gt;&lt;font&nbsp;size=&quot;1&quot;&nbsp;face=&quot;Verdana&quot;&nbsp;color=&quot;gray&quot;&gt;<br>
&lt;p&gt;&lt;b&gt;Your&nbsp;Hospital&nbsp;needs&nbsp;YOU!&lt;/b&gt;&nbsp;We&nbsp;need&nbsp;you&nbsp;to&nbsp;register&nbsp;as&nbsp;a&nbsp;Public,&nbsp;Patient&nbsp;or&nbsp;Staff&nbsp;member&nbsp;and&nbsp;help&nbsp;shape&nbsp;the&nbsp;future&nbsp;of&nbsp;your&nbsp;healthcare.&nbsp;Call&nbsp;0800&nbsp;280&nbsp;2581&nbsp;to&nbsp;register&nbsp;by&nbsp;phone&nbsp;or&nbsp;you&nbsp;can&nbsp;email<br>
&lt;a&nbsp;href=&quot;mailto:bradfordhospitals@capitaregistrars.com&quot;&nbsp;target=&quot;_blank&quot;&gt;bradfordhospitals@capitaregistrars.com&lt;/a&gt;&nbsp;and&nbsp;ask&nbsp;to&nbsp;be&nbsp;registered&nbsp;as&nbsp;a&nbsp;new&nbsp;member.&nbsp;For&nbsp;more&nbsp;information&nbsp;about&nbsp;our&nbsp;hospitals&nbsp;and&nbsp;Foundation&nbsp;Trust&nbsp;Membership&nbsp;please&nbsp;visit<br>
&lt;a&nbsp;href=&quot;http://www.bradfordhospitals.nhs.uk&quot;&nbsp;target=&quot;_blank&quot;&gt;www.bradfordhospitals.nhs.uk&lt;/a&gt;&nbsp;&lt;br&gt;<br>
This&nbsp;message&nbsp;is&nbsp;confidential.&nbsp;It&nbsp;may&nbsp;also&nbsp;contain&nbsp;privileged&nbsp;information.&nbsp;The&nbsp;contents&nbsp;of&nbsp;this&nbsp;e-mail&nbsp;and&nbsp;any&nbsp;attachments&nbsp;are&nbsp;intended&nbsp;for&nbsp;the&nbsp;named&nbsp;addressee&nbsp;only.&nbsp;Unless&nbsp;you&nbsp;are&nbsp;the&nbsp;named&nbsp;addressee&nbsp;or&nbsp;authorised&nbsp;to&nbsp;receive&nbsp;the&nbsp;e-mail&nbsp;of&nbsp;the&nbsp;named&nbsp;addressee<br>
&nbsp;you&nbsp;may&nbsp;not&nbsp;disclose,&nbsp;use&nbsp;or&nbsp;copy&nbsp;the&nbsp;contents&nbsp;of&nbsp;the&nbsp;e-mail.&nbsp;If&nbsp;you&nbsp;are&nbsp;not&nbsp;the&nbsp;person&nbsp;for&nbsp;whom&nbsp;the&nbsp;message&nbsp;was&nbsp;intended,&nbsp;please&nbsp;notify&nbsp;the&nbsp;sender&nbsp;immediately&nbsp;at&nbsp;Bradford&nbsp;Teaching&nbsp;Hospitals&nbsp;NHS&nbsp;Foundation&nbsp;Trust&nbsp;and&nbsp;delete&nbsp;the&nbsp;material&nbsp;from&nbsp;your&nbsp;computer.<br>
&nbsp;You&nbsp;must&nbsp;not&nbsp;use&nbsp;the&nbsp;message&nbsp;for&nbsp;any&nbsp;other&nbsp;purpose,&nbsp;nor&nbsp;disclose&nbsp;its&nbsp;contents&nbsp;to&nbsp;any&nbsp;person&nbsp;other&nbsp;than&nbsp;the&nbsp;intended&nbsp;recipient.&nbsp;Bradford&nbsp;Teaching&nbsp;Hospitals&nbsp;NHS&nbsp;Foundation&nbsp;Trust&nbsp;does&nbsp;not&nbsp;accept&nbsp;responsibility&nbsp;for&nbsp;this&nbsp;message&nbsp;and&nbsp;any&nbsp;views&nbsp;or&nbsp;opinions&nbsp;contained<br>
&nbsp;in&nbsp;this&nbsp;e-mail&nbsp;are&nbsp;solely&nbsp;those&nbsp;of&nbsp;the&nbsp;author&nbsp;unless&nbsp;expressly&nbsp;stated&nbsp;otherwise.<br>
&lt;/p&gt;<br>
&lt;/font&gt;<br>
&lt;/div&gt;<br>
<br>
&lt;br&gt;_______________________________________________&lt;br&gt;<br>
pycrypto&nbsp;mailing&nbsp;list&lt;br&gt;<br>
&lt;a&nbsp;href=&quot;mailto:pycrypto@lists.dlitz.net&quot;&gt;pycrypto@lists.dlitz.net&lt;/a&gt;&lt;br&gt;<br>
&lt;a&nbsp;href=&quot;http://lists.dlitz.net/cgi-bin/mailman/listinfo/pycrypto&quot;&nbsp;target=&quot;_blank&quot;&gt;http://lists.dlitz.net/cgi-bin/mailman/listinfo/pycrypto&lt;/a&gt;&lt;br&gt;<br>
&lt;br&gt;&lt;/blockquote&gt;&lt;/div&gt;&lt;br&gt;&lt;/div&gt;<br>

</tt>
View Lorry Controller Status