[sldev] SL Database purge

Thomas Shikami thomas.shikami at online.de
Tue Apr 29 06:25:05 PDT 2008


Thomas Grimshaw wrote:
> Thomas Shikami wrote:
> This would require the storage of encryption keys on linden equipment, 
> therefore no redundancy is provided, therefore it's not a backup.
I think of using the same key more or less. But keyed using the Agent 
UUID and a good salt to make cracking hard enough. Someone who studied 
cryptography could help with this. I'm thinking of generated keys here, 
so virtually no storage is needed to store keys.
>
> Unless you're planning on using the same key for everything, in which 
> case it will be cracked wide open.
That's why cryptography isn't easy. It's easy to make something that 
seems safe but is cracked quickly if it's some homebrewn stuff. To make 
it secure, I think it's best to make that system open-source and allow 
wide testing of it.


More information about the SLDev mailing list