Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 10 Feb 2015 11:04:51 -0700
From:      Ian Lepore <ian@freebsd.org>
To:        Slawa Olhovchenkov <slw@zxy.spb.ru>
Cc:        arch@FreeBSD.org, John-Mark Gurney <jmg@funkthat.com>
Subject:   Re: removing bdes..
Message-ID:  <1423591491.80968.18.camel@freebsd.org>
In-Reply-To: <20150210175240.GD67127@zxy.spb.ru>
References:  <20150209181502.GF1953@funkthat.com> <20150210151812.GB67127@zxy.spb.ru> <20150210172039.GA1071@reks> <20150210175240.GD67127@zxy.spb.ru>

next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 2015-02-10 at 20:52 +0300, Slawa Olhovchenkov wrote:
> On Tue, Feb 10, 2015 at 09:20:39AM -0800, Gleb Kurtsou wrote:
> 
> > On (10/02/2015 18:18), Slawa Olhovchenkov wrote:
> > > On Mon, Feb 09, 2015 at 10:15:02AM -0800, John-Mark Gurney wrote:
> > > 
> > > > So, I happen to stuble across bdes recently and think we should remove
> > > > it..
> > > > 
> > > > I'm fine w/ making it a port so that people who need it can use it...
> > > > 
> > > > Especially considering:
> > > >      The DES cipher should no longer be considered secure.  Please consider
> > > >      using a more modern alternative.
> > > > 
> > > > Though sadly, that comment was added almost 15 years after DES was
> > > > brute forced by DEEPCrack.
> > > 
> > > Clear text also insecure. Do you remove all clear text?
> > 
> > This is rather odd argument ;)
> > 
> > I'm all for removing it. openssl provides file encryption for those who
> > need it in base.
> 
> 3DES remove too? and how to login users with password in 3DES?
> How to migrate old system with 3DES passwords?

3des != bdes.  

You sure seem to be working hard to invent a problem with a mundane code
cleanup.

-- Ian





Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1423591491.80968.18.camel>