Gcry

0 views
Skip to first unread message

Owoeye Heatley

unread,
Aug 3, 2024, 5:13:45 PM8/3/24
to kayciradcri

The actual availability of an algorithms depends on which ones arecompiled into libgcrypt. Note that some versions of libgcrypt simplyabort the process (rsyslogd in this case!) if a supported algorithmis select but not available due to libgcrypt build settings. There isnothing rsyslog can do against this. So in order to avoid productiondowntime, always check carefully when you change the algorithm.

cry.mode The encryption mode to be used. Default ist Cipher Block Chaining(CBC). Note that not all encryption modes can be used together withall algorithms.Currently, the following modes are supported:

cry.key TESTING AID, NOT FOR PRODUCTION USE. This uses the KEY specifiedinside rsyslog.conf. This is the actual key, and as such this mode ishighly insecure. However, it can be useful for initial testing steps.This option may be removed in the future.

c80f0f1006
Reply all
Reply to author
Forward
0 new messages