changeset: 6416:2fd1b9f17b80
user: Kevin McCarthy <[email protected]>
date: Tue Feb 03 15:39:08 2015 -0800
link: http://dev.mutt.org/hg/mutt/rev/2fd1b9f17b80
Change the smime_encrypt_with default to aes256.
Openssl supports -aes256 at least since 2004, and it's a stronger
algorithm than des3.
Also:
- Remove the incorrect documentation comment about defaulting to 3des if unset.
- Change the default set in contrib/smime.rc.
diffs (29 lines):
diff -r d2f5832a9e68 -r 2fd1b9f17b80 contrib/smime.rc
--- a/contrib/smime.rc Wed Feb 04 11:04:08 2015 -0800
+++ b/contrib/smime.rc Tue Feb 03 15:39:08 2015 -0800
@@ -60,7 +60,7 @@
# Algorithm to use for encryption.
# valid choices are aes128, aes192, aes256, rc2-40, rc2-64, rc2-128, des, des3
-set smime_encrypt_with="des3"
+set smime_encrypt_with="aes256"
# Encrypt a message. Input file is a MIME entity.
set smime_encrypt_command="openssl smime -encrypt -%a -outform DER -in %f %c"
diff -r d2f5832a9e68 -r 2fd1b9f17b80 init.h
--- a/init.h Wed Feb 04 11:04:08 2015 -0800
+++ b/init.h Tue Feb 03 15:39:08 2015 -0800
@@ -2687,12 +2687,11 @@
** possible \fCprintf(3)\fP-like sequences.
** (S/MIME only)
*/
- { "smime_encrypt_with", DT_STR, R_NONE, UL &SmimeCryptAlg, 0 },
+ { "smime_encrypt_with", DT_STR, R_NONE, UL &SmimeCryptAlg, UL "aes256"
},
/*
** .pp
** This sets the algorithm that should be used for encryption.
** Valid choices are ``aes128'', ``aes192'', ``aes256'', ``des'', ``des3'',
``rc2-40'', ``rc2-64'', ``rc2-128''.
- ** If \fIunset\fP, ``3des'' (TripleDES) is used.
** (S/MIME only)
*/
{ "smime_get_cert_command", DT_STR, R_NONE, UL &SmimeGetCertCommand, 0},
