Adding standalone RSA code
Peter Pentchev
roam at ringlet.net
Mon Dec 13 03:14:48 PST 2004
On Fri, Dec 10, 2004 at 05:55:05PM +0000, Mark Murray wrote:
> Colin Percival writes:
> > > Is size really a concern?
> >
> > No. The size is a side-effect of having a minimal, highly secure,
> > library, and was not a design consideration.
>
> "New" very often means "Insecure". I'd rather see something with lots
> of eyes over it, and OpenSSL has the advantage of having quite a few
> competent crypto guys grovel through it.
>
> I'm still inclined to say "Please stick with OpenSSL; it is the devil
> we know."
And then, of course, there's the problem that OpenSSL doesn't work
RIGHT NOW in some situations; see my two e-mails to -hackers and
others (including you ;) at
http://lists.freebsd.org/mailman/htdig/freebsd-hackers/2004-September/008089.html
http://lists.freebsd.org/mailman/htdig/freebsd-hackers/2004-September/008090.html
Yep, "the devil we know", indeed :)
G'luck,
Peter
--
Peter Pentchev roam at ringlet.net roam at cnsys.bg roam at FreeBSD.org
PGP key: http://people.FreeBSD.org/~roam/roam.key.asc
Key fingerprint FDBA FD79 C26F 3C51 C95E DF9E ED18 B68D 1619 4553
.siht ekil ti gnidaer eb d'uoy ,werbeH ni erew ecnetnes siht fI
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-arch/attachments/20041213/4dd0ad5f/attachment.bin
More information about the freebsd-arch
mailing list