From mboxrd@z Thu Jan 1 00:00:00 1970 From: Tom Rymes To: documentation@lists.ipfire.org Subject: Re: Cryptography Date: Thu, 06 Feb 2014 09:15:09 -0500 Message-ID: <52F398ED.2080901@rymes.com> In-Reply-To: <1391694769.21794.92.camel@rice-oxley.tremer.info> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="===============1383022620586141212==" List-Id: --===============1383022620586141212== Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit On 02/06/2014 8:52 AM, Michael Tremer wrote: > * Briefly(!) explain the algorithms there are and point out advantages > and disadvantages. Of course can never give advice to use exactly this > algorithm, but we can say which are considered unsafe to use. Michael, This isn't documentation-related, but is relevant tot he subject you brought up. Perhaps it would be worthwhile to change the user interface to add an element that requires a user to "Enable insecure encryption methods" before using protocols that are considered weak? That way a user could still use those methods if required for interoperability, but it would be clear that it is not recommended for security reasons. Tom --===============1383022620586141212==--