Message309103
Dave, are you still interested to address the issue?
I think it's a good idea to replace HMAC-MD5 in the long run. But instead of hard-coding another hash algorithm, I would like to see an improved handshake protocol that supports flexible authentication algorithms. You could send an algorithm indicator (e.g. HMAC_SHA256) in the request.
It would be really cool to run multiprocessing protocol over TLS with support for SASL with SCRAM or EXTERNAL (TLS cert auth, AF_UNIX PEERCRED, GSSAPI)... |
|
Date |
User |
Action |
Args |
2017-12-27 20:17:37 | christian.heimes | set | recipients:
+ christian.heimes, barry, doko, dmalcolm, sbt |
2017-12-27 20:17:36 | christian.heimes | set | messageid: <1514405856.79.0.213398074469.issue17258@psf.upfronthosting.co.za> |
2017-12-27 20:17:36 | christian.heimes | link | issue17258 messages |
2017-12-27 20:17:36 | christian.heimes | create | |
|