diff options
| author |   angelos <angelos@openbsd.org> | 1999-02-26 10:04:05 +0000 |
|---|---|---|
| committer | angelos <angelos@openbsd.org> | 1999-02-26 10:04:05 +0000 |
| commit | d6073e1cfe4a06a5768934961e705bb24cf8f56b (patch) | |
| tree | 5731dcbdf28f3c1606b2a3cfd41dd29fed4c0c14 | |
| parent | Use .Fn for dbopen() declaration and add from Dv for NULL (diff) | |
| download | wireguard-openbsd-d6073e1cfe4a06a5768934961e705bb24cf8f56b.tar.xz wireguard-openbsd-d6073e1cfe4a06a5768934961e705bb24cf8f56b.zip | |
Print warning when using DES or Skipjack for encryption.
| -rw-r--r-- | sbin/ipsecadm/ipsecadm.c | 9 |
1 files changed, 7 insertions, 2 deletions
diff --git a/sbin/ipsecadm/ipsecadm.c b/sbin/ipsecadm/ipsecadm.c index d83737ad810..b168928c8cf 100644 --- a/sbin/ipsecadm/ipsecadm.c +++ b/sbin/ipsecadm/ipsecadm.c @@ -1,4 +1,4 @@ -/* $OpenBSD: ipsecadm.c,v 1.10 1999/02/26 02:04:52 angelos Exp $ */ +/* $OpenBSD: ipsecadm.c,v 1.11 1999/02/26 10:04:05 angelos Exp $ */ /* * The authors of this code are John Ioannidis (ji@tla.org), * Angelos D. Keromytis (kermit@csd.uch.gr) and @@ -159,7 +159,12 @@ isvalid(char *option, int type, int mode) if (!strcmp(option, xf[i].name) && (xf[i].flags & CMD_MASK) == type && (xf[i].flags & mode)) - return xf[i].id; + { + if (!strcmp(option, "des") || !strcmp(option, "skipjack")) + fprintf(stderr, "Warning: use of %s is strongly discouraged due to cryptographic weaknesses\n", option); + + return xf[i].id; + } return 0; } |