cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: Is there a FIPS-compliant version of curl for NTLM ?

From: Daniel Stenberg <daniel_at_haxx.se>
Date: Thu, 17 Mar 2016 23:19:26 +0100 (CET)

On Thu, 17 Mar 2016, Paul D Rotter wrote:

> I am working on FIPS-compliance for our product which uses curl/openssl.
> I've built and verified the�FIPS-compliant OpenSSL, but the one area where
> we are still receiving FIPS errors is in the curl NTLM authentication
> functions:
> �
> These functions use a�single DES cipher which is not FIPS-approved.

NTLM requires DES. You can't do NTLM without it so if DES is forbidded you
need to switch off NTLM.

-- 
  / daniel.haxx.se

-------------------------------------------------------------------
List admin: https://cool.haxx.se/list/listinfo/curl-library
Etiquette: https://curl.haxx.se/mail/etiquette.html
Received on 2016-03-17

This message: [ Message body ]
Next message: Frank Chang: "How to setup and maintain parallel 64 bit and 32 bit libcurl4-openssl development packages which both stay intact simultaneous"
Previous message: Dan Fandrich: "Re: curl api nghttp2 co-req ?"
In reply to: Paul D Rotter: "Is there a FIPS-compliant version of curl for NTLM ?"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]