Re: RFC2385 (MD5 signature in TCP packets) support

Alan Cox (alan@lxorguk.ukuu.org.uk)
Fri, 15 Mar 2002 23:15:56 +0000 (GMT)


> And if people want encryption they can use ipsec. And if
> ipsec is broken it should be fixed because adding a new
> abomination to MD5.
>
> Maybe I'm missing something, but I see no reason this MD5
> stuff belongs in the protocol and not in the APP.

Not only that MD5 shouldn't be the one. The crypto folks prefer SHA and for
good reasons.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/