https://bugs.exim.org/show_bug.cgi?id=2441
--- Comment #3 from Jeremy Harris <jgh146exb@???> ---
We're not in the business of maintaining custom code for crypto stuff, in
general,
so we'd be dependent on library implementations whatever, and hence platform
dependent.
We could possibly provide better means for creating passphrase hashes also
[cf. gensalt(3)], as opposed to the checking that crypteq does. However, using
such
requires detailed knowlege of the effects of parameter choices.
See also
https://en.wikipedia.org/wiki/PBKDF2 -
OpenSSL has a PKCS5_PBKDF2_HMAC().
Libgcrypt has gcry_kdf_derive(... , GCRY_KDF_PBKDF2, ... ).
The choice of the associated params is obscure and equally complex for those
two.
--
You are receiving this mail because:
You are on the CC list for the bug.
