BIND 10 #2822: remove dependecies to OpenSSL, use Botan instead
BIND 10 Development
do-not-reply at isc.org
Tue Mar 5 10:08:21 UTC 2013
#2822: remove dependecies to OpenSSL, use Botan instead
-------------------------------------+-------------------------------------
Reporter: cas | Owner:
Type: enhancement | UnAssigned
Priority: medium | Status: new
Component: build system | Milestone: New
Keywords: | Tasks
Sensitive: 0 | Resolution:
Sub-Project: Core | CVSS Scoring:
Estimated Difficulty: discuss | Defect Severity: N/A
Total Hours: 0 | Feature Depending on Ticket:
| Add Hours to Ticket: 0
| Internal?: 0
-------------------------------------+-------------------------------------
Comment (by fdupont):
Replying to [comment:9 cas]:
> Replying to [comment:8 fdupont]:
> >As it was already discussed I believe there are something in the
archive and perhaps a ticket?
>
> Not to my knowledge.
=> so please create a new one: subject "simpler cmdctl security",
requirements: simple and as least as secure than SSL/TLS (note security
here is authentication and message integrity, not encryption nor anti-
replay).
> > Anyway a dedicated not too low priority ticket should exist to
reconsider cmdctl security. Note that IMHO SSL/TLS is far to be the best
solution.
>
> This is not about TLS/SSL, but about extra dependencies. TLS/SSL can be
done without OpenSSL.
=> but a simpler and as least as secure solution not based on TLS/SSL
removes the issue doesn't it?
--
Ticket URL: <http://bind10.isc.org/ticket/2822#comment:10>
BIND 10 Development <http://bind10.isc.org>
BIND 10 Development
More information about the bind10-tickets
mailing list