[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: GnuTLS considered harmful

To: Gavin Henry <ghenry@suretecsystems.com>
Subject: Re: GnuTLS considered harmful
From: Howard Chu <hyc@symas.com>
Date: Sat, 16 Feb 2008 14:27:56 -0800
Cc: OpenLDAP Devel <openldap-devel@openldap.org>
In-reply-to: <55072.212.159.59.85.1203198927.squirrel@webmail.suretecsystems.com>
References: <47B751BF.8010103@symas.com> <55072.212.159.59.85.1203198927.squirrel@webmail.suretecsystems.com>
User-agent: Mozilla/5.0 (X11; U; Linux i686; rv:1.9b3pre) Gecko/2008013117 SeaMonkey/2.0a1pre

Gavin Henry wrote:

<quote who="Howard Chu">

I strongly recommend that GnuTLS not be used. All of its APIs would need
to be
overhauled to correct its flaws and it's clear that the developers there
are
too naive and inexperienced to even understand that it's broken.


So that means OpenLDAP on Debian is still not recommended if you don't
compile your own OpenSSL and OpenLDAP.

Since they're committed to using GnuTLS, yes. Unfortunately for the Debian community, just because software is released under the GPL doesn't say anything about its quality. -- -- Howard Chu Chief Architect, Symas Corp. http://www.symas.com Director, Highland Sun http://highlandsun.com/hyc/ Chief Architect, OpenLDAP http://www.openldap.org/project/

Follow-Ups:
- Re: GnuTLS considered harmful
  - From: Russ Allbery <rra@stanford.edu>

References:
- GnuTLS considered harmful
  - From: Howard Chu <hyc@symas.com>
- Re: GnuTLS considered harmful
  - From: "Gavin Henry" <ghenry@suretecsystems.com>

Prev by Date: Re: GnuTLS considered harmful
Next by Date: Re: GnuTLS considered harmful
Index(es):
- Chronological
- Thread