When paranoia strikes... (Score 1)

More than a few of the people posting on this thread could use a nice chill-pill.

http://ntbugtraq.ntad vice.com/default.asp?sid=1&pid=47&aid=52 has a very reasonable outsider's perspective of what this issue is about.

Furthermore, there seems to be some confusion between CSP's and providers of authentication on NT. Assuming the worst possible case (e.g., the NSA can break everything encrypted via CryptoAPI), this has nothing to do with someone subverting LSA or kerberos and logging onto your system and reading or modifying your files.

In other words, you should really only be concerned if you're using the CryptoAPI to encrypt sensitive stuff. If you don't trust the CryptoAPI, then you can always use something unrelated, like PGP. But if your paranoia level is that high, then maybe even PGP has "backdoors" that you're unaware of...