From owner-freebsd-arch@FreeBSD.ORG Sun Jun 21 19:42:36 2015 Return-Path: Delivered-To: freebsd-arch@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 7AF89E41; Sun, 21 Jun 2015 19:42:36 +0000 (UTC) (envelope-from kaduk@mit.edu) Received: from dmz-mailsec-scanner-1.mit.edu (dmz-mailsec-scanner-1.mit.edu [18.9.25.12]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 0E271FB6; Sun, 21 Jun 2015 19:42:35 +0000 (UTC) (envelope-from kaduk@mit.edu) X-AuditID: 1209190c-f79296d000000622-4d-558712763337 Received: from mailhub-auth-3.mit.edu ( [18.9.21.43]) (using TLS with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by dmz-mailsec-scanner-1.mit.edu (Symantec Messaging Gateway) with SMTP id 01.92.01570.67217855; Sun, 21 Jun 2015 15:37:26 -0400 (EDT) Received: from outgoing.mit.edu (outgoing-auth-1.mit.edu [18.9.28.11]) by mailhub-auth-3.mit.edu (8.13.8/8.9.2) with ESMTP id t5LJbP7L007930; Sun, 21 Jun 2015 15:37:26 -0400 Received: from multics.mit.edu (system-low-sipb.mit.edu [18.187.2.37]) (authenticated bits=56) (User authenticated as kaduk@ATHENA.MIT.EDU) by outgoing.mit.edu (8.13.8/8.12.4) with ESMTP id t5LJbOXJ023941 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Sun, 21 Jun 2015 15:37:25 -0400 Received: (from kaduk@localhost) by multics.mit.edu (8.12.9.20060308) id t5LJbN0n002455; Sun, 21 Jun 2015 15:37:23 -0400 (EDT) Date: Sun, 21 Jun 2015 15:37:23 -0400 (EDT) From: Benjamin Kaduk X-X-Sender: kaduk@multics.mit.edu To: Adrian Chadd cc: "freebsd-arch@freebsd.org" Subject: Re: [rfc] add MK_TELNET_SSL as a build option In-Reply-To: Message-ID: References: User-Agent: Alpine 1.10 (GSO 962 2008-03-14) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFvrPIsWRmVeSWpSXmKPExsUixCmqrVsm1B5qsOaqmsXerduZLGZPn8bk wOQx49N8lgDGKC6blNSczLLUIn27BK6Mw9/XsBRsY67YsmcbcwPjdaYuRk4OCQETidc7HzJD 2GISF+6tZ+ti5OIQEljMJLH/wFF2CGcjo8TBpVuYIJxDTBI3fy6EchoYJRasvcII0s8ioC2x 8HEHmM0moCbxeG8zK8RcRYnNpyYB7eDgEBFQleic7wwSZhawlFi64DxYubCAmUTrvClgJ3EK BEo0PZzMBFLOK+Ao8WuTNEhYSCBAYsnUHjYQW1RAR2L1/iksIDavgKDEyZlPWCBGakksn76N ZQKj0CwkqVlIUgsYmVYxyqbkVunmJmbmFKcm6xYnJ+blpRbpGurlZpbopaaUbmIEh60kzw7G NweVDjEKcDAq8fDeYGgLFWJNLCuuzD3EKMnBpCTKe4G/PVSILyk/pTIjsTgjvqg0J7X4EKME B7OSCC8LB1CONyWxsiq1KB8mJc3BoiTOu+kHX4iQQHpiSWp2ampBahFMVoaDQ0mCd6ogUKNg UWp6akVaZk4JQpqJgxNkOA/QcHmQGt7igsTc4sx0iPwpRl2OBT9ur2USYsnLz0uVEue9LQBU JABSlFGaBzcHlm5eMYoDvSXM6wsyigeYquAmvQJawgS05EtuG8iSkkSElFQDY2OSnGbho0X+ HexyKzJn/3oTsTd1574VP1R0zq3ca8B65PXWy/8S9a4t3NUbXHR58w4z47fPWqrjMuJt3jxm ks4tNOlft+PerxP/j7vVu1zjv/9p6emqGx2zg3fPtjl++eXtLZzJLYaPzl/0/XPXpOHkd7fz 1roLHpzg+RHZcO5ReP7FL65bNm5RYinOSDTUYi4qTgQAUU/2rBIDAAA= X-BeenThere: freebsd-arch@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: Discussion related to FreeBSD architecture List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 21 Jun 2015 19:42:36 -0000 On Sat, 13 Jun 2015, Adrian Chadd wrote: > Hi, > > The wifi builds have a need for building telnet/telnetd without > ssl/kerberos in order to meet size constraints and to allow them to be > crunch'ed. Something of a tangent, but the kerberos support in telnet is limited to single-DES, i.e., breakable for $50 or so. I, for one, would be fine seeing it just get removed entirely. (I have no data about telnet/ssl.) -Ben