OpenPGP auth
Chip Christian
chip at princetonecom.com
Wed Aug 2 00:42:14 EST 2000
Werner Koch is definitely not working on a library. I don't have a direct
quote handy, but I recall him saying he wouldn't since he couldn't know
what the library's user is doing with memory. I did find this response on
the topic:
> No. Use the Unix way. The overhead of fork and exec is not that high
> compared to the crypto operations. Have a look at your MTA, it is
> calling procmail (when used) for each message. The httpd calls a CGI
> on every transaction.
sen_ml at eccosys.com said:
> > so, are you going to write an openpgp packet manipulation library?
>
> At present I am just invoking the gnupg binary. I think the gnupg
> people have a project to create a library, so I would probably be
> duplicating work. (Also it would be a *lot* of work -- much more than
> just doing OpenPGP authentication for OpenSSH.)
> iirc, the gnupg people are not working on an openpgp packet
> manipulation library. you might want to confirm this w/ them.
> it may be a lot of work, but i was hoping someone could take it up ;-)
>
More information about the openssh-unix-dev
mailing list