alt Hacker NewsReasonable! Anyone who cares about AD security has been AES-only for at least a year now, and most likely much longer, and it's not like these mitigations are especially hard, unless you're still running some seriously obsolete software.
Replies
JackSlateur • last Wednesday at 11:37 AM
Anyone who cares about AD security has left AD for a long time, no ?
➕ show 2 replies
Nope. AES is not trivial to implement securely, so most implementations simply rely on hardware support. ChaCha20 and XChaCha20 are more secure ciphers.