Is OpenSMTPD worthy of OpenBSD inclusion?

Hi folks, Like many others, when I learned that OpenBSD was creating from scratch an SMTP daemon, I was thrilled. The OpenBSD name has for a long time been connected with security, stability, and reliability. I was excited to see an extremely easy to configure yet powerful SMTP daemon coming from

signify(1) signatures with a YubiHSM

Hey folks, I'm using signify(1) for update signatures in the upcoming WireGuard for Windows (there'll be OpenBSD news soon in that department, I hope!). Not wanting to store keys on my laptop or something, I managed to get a YubiHSM to produce valid signify(1) signatures. I thought I should docume

Re: signify(1) signatures with a YubiHSM

On Tue, May 7, 2019 at 4:00 PM Ted Unangst wrote: > oh nice. I'm glad this is at least possible with some effort. I should note that one limitation of the device is that it will only sign ~2k of data for ed25519, due to the collision-proof hashing scheme that requires buffering. Something like ed