Greg Stein wrote: > > On Thu, Jun 07, 2001 at 01:09:28AM +0200, Sander Striker wrote: > > Hi all, > > > > As if we weren't having enough discussion on this list > > I'll throw in something else... > > > > Could we consider _removing_ all crypto related code > > from apr-util (and apr for that matter, since md5 > > still lives there)? > > Nope. Per the comments already provided. Many apps nowadays use MD5 and/or > SHA1 for various kinds of functions. They are useful in a huge variety of > tasks -- not just crypto. Since they are generic hashing functions, they can > be used as an excellent checksum or as a unique identifier for items.
I agree about MD5 and SHA-1. Where thing start getting out of hand is stuff like HMAC, MD4 or any kind of actual crypto. Things that need those should depend on OpenSSL, IMO. Also, if you need speed you should probably use the OpenSSL implementations. Cheers, Ben. -- http://www.apache-ssl.org/ben.html "There is no limit to what a man can do or how far he can go if he doesn't mind who gets the credit." - Robert Woodruff
