Le 15/08/2014 16:44, Thomas Goirand a écrit : > Package: wnpp > Severity: wishlist > Owner: Thomas Goirand <z...@debian.org> > > * Package name : libjs-jsencrypt > Version : 2.0.0+dfsg1 > Upstream Author : Travis Tidwell <travist...@gmail.com> > * URL : http://travistidwell.com/jsencrypt/ > * License : Expat > Programming Lang: JavaScript > Description : RSA Encryption in JavaScript > > JSEncrypt provides a simple wrapper around the fantastic work done by Tom Wu > for RSA Encryption in JavaScript (ie: the jsbn Javascript library). JSEncrypt > works hand-in-hand with openssl. > . > With JSEncrypt, you can generate private and public keypairs (it takes less > than 6 seconds for generating a 2048 bits keypair on my laptop), then use > them > to encrypt and decrypt. > > I am really a newcomer in security, but I still think there should be a warning on using this library for generating keypairs, since there is no reliable source of entrypo available in Javascript (yet). Please feel free to slap me if I am wrong on this :)
Adrien -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
