SMB3 encryption performance

Ira Cooper ira at
Tue Feb 17 10:00:04 MST 2015

On Tue, Feb 17, 2015 at 04:22:29PM +0100, Volker Lendecke wrote:
> This is a minefield. Do we really want to participate? These fights
> tell me that consensus over a crypto library in the Free Software
> world is lightyears away. That would be a good reason to go and do it
> on our own.


I'm with Simo here.  You've shot nettle, and decided you don't like
it that's fine... what about gcrypt?  I see nothing wrong with it so far?!

I'll also bring in the littany of crypto errors that have
made the press... For those who remember the Debian OpenSSL random number
generator error :(.  Heartbleed, etc... It all proves to me that when it
comes to that type of code, it is JUST dangerous.

I'm not saying we CAN'T do it.  I'm saying I'd rather have a full SMB3
stack instead.

I also think the world needs another crypto library like a fish
needs a bicycle.

My thoughts,


More information about the samba-technical mailing list