search for: fitzner

...Enc=AESGCM(128) Mac=AEAD 0x00,0x3C - AES128-SHA256 TLSv1.2 Kx=RSA Au=RSA Enc=AES(128) Mac=SHA256 Is there a better way to do this? Is there a way to disable only the suspect NIST curves and still retain EECDH but with side-channel safe curves like X25519? Thanks, Kurt Fitzner Links: ------ [1] https://blog.cr.yp.to/20140323-ecdsa.html -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://dovecot.org/pipermail/dovecot/attachments/20181218/59c56547/attachment.html>

...ly have delimiters. I am wondering what the odds are of reconciling the two approaches, hopefully in favour of the Postfix one. Failing a switch to the other behaviour, is it possible to add the Postfix method as an option? Would a patch for either of these be accepted? Thanks, Kurt Fitzner

Hi all, Is there a way to get dovecot to recognize arbitrary password hash schemes when looking up a password in a database? I originally set up with #default_pass_scheme = MD5, and I would like to migrate to SHA512. Seeing as the scheme is actually stored in the password column along with the password in the format $_<scheme#>_$_<salt>_$_<passwordhash>_, it seems to me that

On 08.09.2017 06:16, Kurt Fitzner wrote: > > > Hi all, > > Is there a way to get dovecot to recognize arbitrary password hash > schemes when looking up a password in a database? I originally set up > with #default_pass_scheme = MD5, and I would like to migrate to SHA512. > > Seeing as the scheme is ac...

I have a raid5 array on my web server for which I am currently considering a move to ext3. I want to use an external journal to improve performance. Since the external journal would reside on a drive that is not participating in the raid array, I'm wondering what the behavior of an ext3 filesystem is should the device an external journal is on should fail. If it reverts to ext2

Hi all, I would like to know how often a writes happen on ext3 fs. Is there any way to find this out? Thanks Rahul

...lable from http://gpgee.excelcia.org For those that aren''t familliar with GPGee, it is a GnuPG Explorer Extension for Windows. It adds GnuPG sign/encrypt/verify/decrypt support to the Windows explorer right-click context menu. See the web site above for a fuller list of features. Kurt Fitzner [reposted by moderator]

I am having a terrible time getting an iPhone to connect to my stream. I am trying to connect through just a normal web browser (Safari) to my icecast 2.4.4 server. When I connect to the web page, the iphone doesn't see the <audio> tag on the stream. I think safari doesn't recognize application/ogg as a mime type, which is what icecast 2.4.4's web server puts on it. When I

My opinion is that security by RFC is not security, it's mommy medicine. Standards have had a terrible time keeping up with security realities. NITS's curves leak side channel information all over the place. I don't have details on what implementations are set to calculate the NIST curves in constant time, and that's not an easy feat to do anyway so I don't want to depend

Hi, I tried to compile openssh-2.1.1p4 on a slackware 7.1 (and then on a slackware 7.0). you need to supply -lcrypt because otherwise auth-passwd.c line 135 calls the wrong crypt and sshd will never let you log in. (took a while to figure that out.) I tried './configure --with-libs crypt' but configure doesn't seem to understand me ;) checking host system type... Invalid

Version 1.2.0 of GPGee has been released - head to the homepage at http://gpgee.excelcia.org to download it. New features include: - Support for creating signatures with more than one key at once. - Support for verifying multi-signed documents. - Automated new version checking (this was actually added in 1.1.3 but that version was unannounced) - Can automatically change the status of source