From owner-freebsd-current@FreeBSD.ORG Wed Jan 8 07:55:01 2014 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 955E16F7 for ; Wed, 8 Jan 2014 07:55:01 +0000 (UTC) Received: from mail-pa0-x22c.google.com (mail-pa0-x22c.google.com [IPv6:2607:f8b0:400e:c03::22c]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id 660511A54 for ; Wed, 8 Jan 2014 07:55:00 +0000 (UTC) Received: by mail-pa0-f44.google.com with SMTP id fa1so1523761pad.31 for ; Tue, 07 Jan 2014 23:55:00 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=wemm.org; s=google; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=WbFrCySjUy2b2T6vPK+HkuCrO57/kll9v97764UO2Os=; b=RuotI1GJj8DnTT6ewQ7Wc7odliPGcJEJ6Wm/LDJFk1p8Cskx2W/k5pgctWvhbkkUCG 6WnXIzLVHN0yIDqlxRRw5nCb96m8nxFtq88uYDzSFj7xxGw6ubq6wQOQxbXSg+gvF8FV 3FUVlYVtumTKb43s+4c3Ni4vx8idvlfDqfElg= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=WbFrCySjUy2b2T6vPK+HkuCrO57/kll9v97764UO2Os=; b=hXRehu2EGmo4SUgdXjHkdzD+izDnp6359TWRzxoGIeo2FRp132tGlzUSDQaTcjh7Gh I6mMjd+l4pggMK5MSBU1xFXnop0jmSP74SYJSM5RPXTzt3BdRyVlGurxM1oqD0kt3lQV qnWXAcualkgkxsRxW0b6kOfds0vDJPG3V98AEu9hLY1UcIxHdLd57+Nm+jhS+CNH5Cld HOYNH+W0wwF9A0VQZ7slfsPWMnCzOFOxk3hzqnQsYpoDwdLeOh4m1MlgDgCo9FdwfUgL +sz7AWeUnchfXObvVB+BQj6LNCDkibZye2Cy1qARh6+awVwHNAKt4fIpV1JXI94BBl7u gQqA== X-Gm-Message-State: ALoCoQmNAWjgq1P0DwBKoVWVcXE2Jgvg4Mj17Nirz77X97uX4jHrghBr/LSznIYKKhGjyYZJFN4n MIME-Version: 1.0 X-Received: by 10.68.189.165 with SMTP id gj5mr139313118pbc.111.1389167699944; Tue, 07 Jan 2014 23:54:59 -0800 (PST) Received: by 10.66.162.3 with HTTP; Tue, 7 Jan 2014 23:54:59 -0800 (PST) In-Reply-To: <52BB2979.5040008@aldan.algebra.com> References: <52B392D9.4030507@aldan.algebra.com> <52B483D7.7080302@gmx.de> <52B486AD.7080102@aldan.algebra.com> <52B48E8C.5070804@gmx.de> <52BB2979.5040008@aldan.algebra.com> Date: Tue, 7 Jan 2014 23:54:59 -0800 Message-ID: Subject: Re: md2 on current and 10. From: Peter Wemm To: Mikhail T Content-Type: text/plain; charset=ISO-8859-1 Cc: olli hauer , Current FreeBSD X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 08 Jan 2014 07:55:01 -0000 On Wed, Dec 25, 2013 at 10:52 AM, Mikhail T wrote: > On 20.12.2013 13:38, olli hauer wrote: >> md2 was deprecated in 2009 by the openssl project >> >> http://cvs.openssl.org/chngview?cn=18381 >> CVE-2009-2409 >> >> As fas as I know some Linux based projects have removed md2 from openssl-0.9.x in 2009. [..] > Could we, please, have MD2 resurrected before 10.0 is officially out? > Preferably in both -lmd and -lcrypto, but certainly in the former. Thank > you! Yours, The time to bring this up was before the freeze for 10.0, a good 6+ months ago. It is way too late now. However.. the code in libmd had had a non-commercial use restriction.. Even if it wasn't too late, that code won't be back. Your best bet is to create a crypto/libmd2 port. Start with the code from openssl. -- Peter Wemm - peter@wemm.org; peter@FreeBSD.org; peter@yahoo-inc.com; KI6FJV