Re: Crypto-sendmail (was Crypto Coding Project)

EKR (ekr@terisa.com)
21 Aug 1998 07:26:28 -0700

• Next message: David Honig: "Re: Pseudo-random code in asm?"
• Previous message: Mark Tillotson: "Re: MD5 or SHA code"
• In reply to: Mark Tillotson: "Re: MD5 or SHA code"
• Next in thread: Ben Laurie: "Re: Crypto-sendmail (was Crypto Coding Project)"

"Enzo Michelangeli" <em@who.net> writes:
> [...]
> >I doubt this will be an acceptable long-term solution,
> >on heavily loaded mail servers because the performance costs
> >of the fork() are excessive.
>
>
> Well, key negotiation is much harder on the CPU resources than a fork().
Actually, this is irrelevant anyway. I'd forgotten that
sendmail() forks immediately anyway -- or at least did
when last I looked.

> Luckily, SSL/TLS could come to the rescue, thanks to its ability to use a
> session for multiple TCP connections.
This only works when you're getting multiple connections from the
same machine, which may or may not be the case.

-Ekr

-- 
[Eric Rescorla                             Terisa Systems, Inc.]
		"Put it in the top slot."

• Next message: David Honig: "Re: Pseudo-random code in asm?"
• Previous message: Mark Tillotson: "Re: MD5 or SHA code"
• In reply to: Mark Tillotson: "Re: MD5 or SHA code"
• Next in thread: Ben Laurie: "Re: Crypto-sendmail (was Crypto Coding Project)"