Wire encryption plugin using chacha cypher

[AlexPeshkoff]

No description provided.

[asfernandes]

Missing LIB_LINK_DARWIN_INSTALL_NAME

[asfernandes]

Why not use AutoPtr?

[AppVeyorBot]

✅ Build firebird 1.0.1201 completed (commit acd9791b83 by @AlexPeshkoff)

[AppVeyorBot]

✅ Build firebird 1.0.1220 completed (commit 4ab23b7dc7 by @hvlad)

[aafemt]

With this plugin do Firebird allow using wire encryption with legacy and sspi authentification?

[AlexPeshkoff]

On 2019-12-24 13:36, Dimitry Sibiryakov wrote: With this plugin do Firebird allow using wire encryption with legacy

No. Chacha is less critical to key quality but I see no way to have a session key with DES.

and sspi authentification?

SSPI has many implementations. If windows authentication is using active directory / kerberos even 'good old' RC4 can be used. With NTLM session key obviously has very poor quality and RC4 is bad for that case. Chacha in that case is certainly better but I can't say for sure is it good enough or not. PS. The primary goal of adding this plugin is to give an answer to the people who cry 'RC4 is bad-bad-bad!' not understanding that's it's bad only in _some_ cases. Well - instead of trying to explain something it's simpler to add what they want.

[hvlad]

@AlexPeshkoff : could you provide minimal documentation about it ? At least at firebird.conf.

[AlexPeshkoff]

On 2019-12-24 20:12, Vlad Khorsun wrote: @AlexPeshkoff <https://github.com/AlexPeshkoff> : could you provide minimal documentation about it ? At least at firebird.conf.

Я планирую там доработать кроме документации ещё кое-что но для успокоения души прошу проверить - свяжется ли c 4 у которой вот такая строка в firebird.conf: WireCryptPlugin = ChaCha, Arc4 стандартный клиент от 3 на винде. A.