Comments on: Use FIPS Compliant Algorithms for Encryption, Signing and Hashing http://www.infosecblog.org/2008/01/use-fips-compliant-algorithms-for-encryption-signing-and-hashing/ Mon, 06 Feb 2012 07:04:18 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: Roger's Information Security Blog http://www.infosecblog.org/2008/01/use-fips-compliant-algorithms-for-encryption-signing-and-hashing/comment-page-1/#comment-226 Roger's Information Security Blog Wed, 04 Mar 2009 20:03:12 +0000 http://www.infosecblog.org/2008/01/use-fips-compliant-algorithms-for-encryption-signing-and-hashing/#comment-226 <strong>The dreaded FIPS complaint setting</strong> (Ok, a typo in the subject, but it was funny so left it in) The Technet blogs require registration to comment, and don't allow me to use my Microsoft Live account to log in, much less openID. I didn't feel... The dreaded FIPS complaint setting

(Ok, a typo in the subject, but it was funny so left it in) The Technet blogs require registration to comment, and don’t allow me to use my Microsoft Live account to log in, much less openID. I didn’t feel…

]]> By: Anon http://www.infosecblog.org/2008/01/use-fips-compliant-algorithms-for-encryption-signing-and-hashing/comment-page-1/#comment-225 Anon Sat, 02 Feb 2008 23:15:56 +0000 http://www.infosecblog.org/2008/01/use-fips-compliant-algorithms-for-encryption-signing-and-hashing/#comment-225 As a consultant for a large government agency, we expect all agencies to request a waiver on this setting in FDCC. What I do like, which is already implemented where I'm at is the removal of the easy to reverse LM hashes for passwords. As a consultant for a large government agency, we expect all agencies to request a waiver on this setting in FDCC. What I do like, which is already implemented where I’m at is the removal of the easy to reverse LM hashes for passwords.

]]>