Bad Crypto Challenge #48
Description
A crypto level
result key is XORd with a secret server key.
The user can use the same cipher to encrypt their own text to try brute force the key. However the actual vulnerability in the crypto is that the XOR function will not account for spaces, and will reveal the server key. The ciphertext can then be XORd with the key to recover the plain text.
This was an issue discovered in shepherd's user specific keys that was addressed.