Comment Re:Arcfour (Score 1) 90
Oh, wait, it's the arcfour key scheduling thing again.
This is an old arcfour weakness, not news. Everybody knows about it (and how to avoid it). The SSL people just never bothered to do it.
According to the slides, this attack works by exploiting a bias in the output of RC4, not the key schedule at all...