avoid cyrus-sasl implementations of encryption?
Dan White
dwhite at olp.net
Tue Apr 14 09:57:13 EDT 2015
On 04/13/15 18:12 -0700, Jan Parcel wrote:
>Can I get cyrus-sasl to use encryption from the O.S. and not implement
>any of its own?
>I am told that everything except md5 already does this if I'm using openssl.
The DIGEST-MD5 plugin uses openssl for DES related functions. The
implementation of the plugin is based on RFC 2831, and presumably reuses
openssl code where it can.
>Is there a way to get the md5 plugin to use openssl instead of its own
>encryption?
>
>If not, how do I find out the maximum key length provided by the plugin?
See the RFC, or '[sasl]pluginviewer -m DIGEST-MD5'.
>I need to know what is needed to comply with any export laws wrt
>implementing encryption.
http://en.wikipedia.org/wiki/Export_of_cryptography_from_the_United_States
--
Dan White
More information about the Cyrus-sasl
mailing list