[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: gnutls + openpgp
|
From: |
Nikos Mavrogiannopoulos |
|
Subject: |
Re: gnutls + openpgp |
|
Date: |
Sun, 04 Nov 2012 12:05:04 +0100 |
|
User-agent: |
Mozilla/5.0 (X11; Linux x86_64; rv:10.0.6esrpre) Gecko/20120805 Icedove/10.0.6 |
On 11/03/2012 10:01 PM, Richard Moore wrote:
> On 3 November 2012 19:26, Nikos Mavrogiannopoulos <address@hidden> wrote:
>> And even more, if it is shown they are not widely used, does it make
>> sense to support openpgp keys in gnutls at all?
> If they're not used, then supporting them simply means gnutls has a
> bigger attack surface for no benefit.
This is not really true. One needs to specifically enable the openpgp.
That codebase doesn't affect an application which is only using the
X.509 part of gnutls. The main concern IMO, is the maintenance cost, and
it'd be better not to have it if there are no users of the subsystem.
regards,
Nikos
- gnutls + openpgp, Nikos Mavrogiannopoulos, 2012/11/03
- Re: gnutls + openpgp, Richard Moore, 2012/11/03
- Re: gnutls + openpgp,
Nikos Mavrogiannopoulos <=
- Re: gnutls + openpgp, Peter Williams, 2012/11/03
- Re: gnutls + openpgp, Matthias-Christian Ott, 2012/11/04
- Re: gnutls + openpgp, Daniel Kahn Gillmor, 2012/11/05
- Re: gnutls + openpgp, Patrick Pelletier, 2012/11/06