Re: [Gaim-e-developer] gaim-e roadmap

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

W0d3n pretty much got a handle on the current instability of the current 
CVS, so I'm going to concentrate on my 2.0 feature wishlist. I'll try and 
stay out of the weeds. :-)

1. MAYBE add an option to the config so a user will be asked which key to 
use upon receiving a crypto request.

2. completely rewrite the handshake protocol. however we do it, both parties 
must enter their passwd or we cannot assume they are who they say they are.

3. support for more than just RC5. and while we're at it, use crypto code 
that's not architecture dependant. I'm thinking we should stick to block 
ciphers. IMHO stream ciphers would be a hellish pandora's box.

4. consider catching auto-replies (away messages) and not letting them thru 
while encrypted. it causes a known plaintext attack.

5. Queue enciphered messages while awaiting user password entry.

I'll repost if and when I think of more.
Peace
stu_monster

_________________________________________________________________
Send and receive Hotmail on your mobile device: http://mobile.msn.com