Date: Mon, 13 Dec 2004 13:14:44 +0200 From: Peter Pentchev <roam@ringlet.net> To: Mark Murray <markm@FreeBSD.ORG> Cc: freebsd-arch@FreeBSD.ORG Subject: Re: Adding standalone RSA code Message-ID: <20041213111444.GC4172@straylight.m.ringlet.net> In-Reply-To: <200412101755.iBAHt55A090986@grovel.grondar.org> References: <41B9D586.5070403@wadham.ox.ac.uk> <200412101755.iBAHt55A090986@grovel.grondar.org>
index | next in thread | previous in thread | raw e-mail
[-- Attachment #1 --] On Fri, Dec 10, 2004 at 05:55:05PM +0000, Mark Murray wrote: > Colin Percival writes: > > > Is size really a concern? > > > > No. The size is a side-effect of having a minimal, highly secure, > > library, and was not a design consideration. > > "New" very often means "Insecure". I'd rather see something with lots > of eyes over it, and OpenSSL has the advantage of having quite a few > competent crypto guys grovel through it. > > I'm still inclined to say "Please stick with OpenSSL; it is the devil > we know." And then, of course, there's the problem that OpenSSL doesn't work RIGHT NOW in some situations; see my two e-mails to -hackers and others (including you ;) at http://lists.freebsd.org/mailman/htdig/freebsd-hackers/2004-September/008089.html http://lists.freebsd.org/mailman/htdig/freebsd-hackers/2004-September/008090.html Yep, "the devil we know", indeed :) G'luck, Peter -- Peter Pentchev roam@ringlet.net roam@cnsys.bg roam@FreeBSD.org PGP key: http://people.FreeBSD.org/~roam/roam.key.asc Key fingerprint FDBA FD79 C26F 3C51 C95E DF9E ED18 B68D 1619 4553 .siht ekil ti gnidaer eb d'uoy ,werbeH ni erew ecnetnes siht fI [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.6 (FreeBSD) iD8DBQFBvXmk7Ri2jRYZRVMRAidWAJ9Cca8cJPNDznxJuz1MSkn87TDUqQCeJdrs ReJENdPye1YOpgyvv4lg13A= =z234 -----END PGP SIGNATURE-----home | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20041213111444.GC4172>