Y
Hacker News
new
|
ask
|
show
|
jobs
by
gwern
4800 days ago
> no open IP logging taking place (IP addresses associated with submissions are stored in the DB in an encrypted format).
Given how small the IP space is, does that actually add anything?
1 comments
MichaelGG
4800 days ago
With a random IV and CBC, is it actually not secure? Assuming you have the encrypted entries, and can even create more on-demand, what can you do besides brute force the key? Plus, almost any 4-byte result is a valid result.
link
gwern
4800 days ago
I'm not sure, but OP didn't mention using random IVs or CBC.
link