On 20.09.2014 00:17, Mat Troi wrote:
> Thank you for bringing up the licensing issue.  It would have been a
> waste of time developing it and then can't use it.  I think our group is
> going to pursue the gnuTLS route.  If anyone has experienced in
> integrating gnuTLS or any other library into GRUB2, please let me know. 
> Thanks.
As I said, unless you can propose and implement good entropy gathering
and PRNG design for GRUB I strongly oppose integrating gnutls as it
doesn't do any protection in this setup and only gives false sense of
security.
> 
> On Mon, Sep 1, 2014 at 11:56 AM, Vladimir 'φ-coder/phcoder' Serbinenko
> <phco...@gmail.com <mailto:phco...@gmail.com>> wrote:
> 
>     On 30.08.2014 00:55, Mat Troi wrote:
>     > Hi,
>     >
>     > Just wondering if anyone has tried to integrate openSSL into GRUB?
>     >
>     It's possible to integrate GnuTLS in GRUB. It may even appear to work.
>     But without good entropy source SSL/TLS is as good as xoring with
>     49686176656e6f6964656161626f757463727970746f
>     > Thanks,
>     > Matt
>     >
>     >
>     > _______________________________________________
>     > Grub-devel mailing list
>     > Grub-devel@gnu.org <mailto:Grub-devel@gnu.org>
>     > https://lists.gnu.org/mailman/listinfo/grub-devel
>     >
> 
> 
> 
>     _______________________________________________
>     Grub-devel mailing list
>     Grub-devel@gnu.org <mailto:Grub-devel@gnu.org>
>     https://lists.gnu.org/mailman/listinfo/grub-devel
> 
> 
> 
> 
> _______________________________________________
> Grub-devel mailing list
> Grub-devel@gnu.org
> https://lists.gnu.org/mailman/listinfo/grub-devel
> 


Attachment: signature.asc
Description: OpenPGP digital signature

_______________________________________________
Grub-devel mailing list
Grub-devel@gnu.org
https://lists.gnu.org/mailman/listinfo/grub-devel

Reply via email to