On Mon, Dec 17, 2007, Vittorio Giovara wrote: > hi! > I was encoding some files with the -salt option specified and passing > the key and iv from command line > > $ openssl enc -des3 -in test.txt -out test.des3 -salt -K 12345 -iv 12345 > > but then i tested the program with the -nosalt option selected, and > the files in the two cases where the same > as a matter of fact the encoded salted file doesn't even contain the > "Salted__" string > > then if i remove the -K and -iv options and let program derive the key > and iv from password the file is actually salted > > is this normal behaviour or is it a bug of the program? > thanks for the attention
Well arguably using -salt with -K and -iv is inconsistent so it should produce and error. The key and IV are derived from the passphrase and salt so when you supply a key and IV explicitly the salt is not used. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
