| Randal | therefore you'll need to have a shared key at all web servers. |
| Hatake | phroggy: its for an Op Sys class |
| Gigsaw | http://www.faqs.org/faqs/cryptography-faq/ |
| hobbs | perlygatekeeper: there's a huge difference between understanding how it works at a small scale, and knowing how to build a system on it |
| phroggy | Hatake: are there headers you can #include that offer similar functionality to File::Spec? |
| hobbs | "Applied Cryptography" is the standard (and excellent) answer of course :) |
| perlygatekeeper | oooo I'll look there |
| Hatake | phroggy: i've been working on it for like 20 hours now, and i could finish it if i could figure out how to parse a,b,c from a:b:c using regex |
| Gigsaw | perlygatekeeper, try ##crypto |
| Randal | if the data is *encrypted* in the database, then every db client must know how to decrypt it |
| Hatake | phroggy: maybe, but we're required to use regex |
| Randal | the db server cannot know how, or else it's as bad as storing it unencrypted |
| hobbs | Hatake: that's incredibly stupid |
| Randal | so every db client (web server) has to share the means to encrypt/decrypt and that means you have key distro and development issues |
| integral | Yes, /Applied Crypto./ is brilliant :) Needs a new edition though imho |
| Caelum | Hatake: perldoc perlrequick might help |
| Randal | far bigger issues than just crypto |
| Hatake | hobbs:noted :-) |
| hobbs | integral: I suppose it wouldn't hurt, you're right. But the 2/e is still pretty good. |
| Gigsaw | Randal, methinks s/he should read up a bit more on basic crypto before tackling that |
| perlygatekeeper | ok, the situation now is that any change in the database requires cobalt programmer, so I am suggesting that they AT LEAST stop shoving the SSN's to our faculty's browsers |
| Randal | cobalt? |
| Gigsaw | cobol? |
| perlygatekeeper | seriously, on a main frame |
| Randal | the ssns are probably needed for school apps though since most schools use them as IDs |
| Gigsaw | perlygatekeeper, sounds like you need a spec |
| Randal | so again, I think you know a bit too little to be making any demands |
| perlygatekeeper | but there are decades of student data, moving to people soft setup but that is supposed to be done by the end of 2009, which means sometime in 2012 |
| Randal | you'll be decried as someone who is screaming that the sky is falling |
| hobbs | eew |
| Randal | unless you actually understand what you're talking about |
| hobbs | PeopleSoft is probably worse than the ancient crap you've already got ;) |
| Randal | and so far, you're not making any sense. :) |
| perlygatekeeper | hobbs, you're fucking kidding me |
| Randal | no, he's not |
| perlygatekeeper | at least it runs on 'recent' hardware on an OS that was written in my lifetime |
| Randal | ibm 3270 emulators run on recent hardware |