On Sep 5, 2014, at 3:25 PM, John-Mark Gurney <[email protected]> wrote:
> Skipjack: already removed by OpenBSD and recommend not for use by NIST > after 2010, key size is 80 bits Yes, nuke. > CAST: key size is 40 to 128 bits CAST 128 is not weak. Having said that, it is also not used much, and has minor (if any) value over AES-128. I can't tell from your message if you are leaving CAST >128 in; if so, you should leave CAST 128 in as well. If CAST 128 is the max in the module, you can either remove all of CAST or leave CAST 128 in, it doesn't matter. --Paul Hoffman _______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "[email protected]"
