https://bugs.exim.org/show_bug.cgi?id=2441
--- Comment #3 from Jeremy Harris <[email protected]> --- We're not in the business of maintaining custom code for crypto stuff, in general, so we'd be dependent on library implementations whatever, and hence platform dependent. We could possibly provide better means for creating passphrase hashes also [cf. gensalt(3)], as opposed to the checking that crypteq does. However, using such requires detailed knowlege of the effects of parameter choices. See also https://en.wikipedia.org/wiki/PBKDF2 - OpenSSL has a PKCS5_PBKDF2_HMAC(). Libgcrypt has gcry_kdf_derive(... , GCRY_KDF_PBKDF2, ... ). The choice of the associated params is obscure and equally complex for those two. -- You are receiving this mail because: You are on the CC list for the bug. -- ## List details at https://lists.exim.org/mailman/listinfo/exim-dev Exim details at http://www.exim.org/ ##
