From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on inbox.vuxu.org X-Spam-Level: X-Spam-Status: No, score=-0.0 required=5.0 tests=T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no version=3.4.4 Received: (qmail 6630 invoked from network); 4 Jun 2022 07:14:57 -0000 Received: from 9front.inri.net (168.235.81.73) by inbox.vuxu.org with ESMTPUTF8; 4 Jun 2022 07:14:57 -0000 Received: from firstpost.pub ([46.23.91.149]) by 9front; Sat Jun 4 03:13:16 -0400 2022 Received: from smtpclient.apple ( [37.120.217.162]) by firstpost.pub (OpenSMTPD) with ESMTPSA id 1d2b97b4 (TLSv1.2:ECDHE-ECDSA-AES256-GCM-SHA384:256:NO) for <9front@9front.org>; Sat, 4 Jun 2022 09:12:37 +0200 (CEST) From: sml Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3696.80.82.1.1\)) Message-Id: Date: Sat, 4 Jun 2022 09:13:06 +0200 To: 9front@9front.org X-Mailer: Apple Mail (2.3696.80.82.1.1) List-ID: <9front.9front.org> List-Help: X-Glyph: ➈ X-Bullshit: database-oriented persistence-scale lifecycle shader interface Subject: [9front] obsolete cryptographic algorithms Reply-To: 9front@9front.org Precedence: bulk Hello everyone,=20 I am currently trying to understand the implementation of factotum and I = noticed that /sys/src/libsec contains some obsolete cryptographic = algorithms like sha-1, md4, md5, dsa and des.=20 In section 7.4.3.2 of the fqa the manual change from p9sk1 to dp9ik is = described and since then, as far as I understand, it is also the new = standard where des has been replaced by aes.=20 In the list I keep reading about different cleanups, which I greatly = appreciate and I'm wondering whether the deprecated crypto algorithms = and protocols can be cleaned out as well, or if there is a specific = reason to hold on to them. I think if you use very weak crypto, you can = do without it directly. Many thanks in advance for your responses! Best regards,=20 sml=