user

reason

comment

/bin/ed /bin/red

Using libcrypto for des support

We should remove des support

/lib/geom/geom_eli.so

/sbin/hastctl /sbin/hastd

for sha256

Switched to libmd r313192

/usr/bin/dc

Uses for bignum

/usr/bin/drill

/usr/bin/factor

Uses for BIGNUM

/usr/bin/hxtool

/usr/bin/kadmin

/usr/bin/kinit

/usr/bin/kpasswd

/usr/bin/ksu

/usr/bin/ntpq

/usr/bin/slogin

/usr/bin/ssh

/usr/bin/ssh-agent

/usr/bin/ssh-keygen

/usr/bin/string2key

/usr/bin/svnlite

/usr/bin/svnlitebench

/usr/bin/svnlitemucc

/usr/bin/svnliterdump

/usr/bin/svnlitesync

/usr/bin/telnet

/usr/lib/libarchive.so.6

Uses libcrypto for hashes

should be replaced by libmd without option if switch pbkdf2_sha1() will not function

/usr/lib/libbsnmp.so.6

/usr/lib/libfetch.so.6

Uses libcrypto for md5 and libssl for tls

/usr/lib/libgssapi_krb5.so.10

/usr/lib/libgssapi_ntlm.so.10

/usr/lib/libheimntlm.so.11

/usr/lib/libhx509.so.11

/usr/lib/libkdc.so.11

/usr/lib/libkrb5.so.11

/usr/lib/libmp.so.7

/usr/lib/libprivateldns.so.5

/usr/lib/libprivatessh.so.5

/usr/lib/libprivateunbound.so.5

/usr/lib/libradius.so.5

/usr/libexec/digest-service

/usr/libexec/dma

/usr/libexec/kdigest

/usr/libexec/ssh-keysign

/usr/libexec/ssh-pkcs11-helper

/usr/libexec/telnetd

/usr/libexec/sendmail

/usr/sbin/auditdistd

HMAC / tls

/usr/sbin/bhyve

DES ECB for VNC password auth

/usr/sbin/hostapd

/usr/sbin/kstash

/usr/sbin/kutil

/usr/sbin/ntp-keygen

/usr/sbin/ntpupdate

/usr/sbin/ntpdc

/usr/sbin/pkg

Uses it for RSA signature validation

/usr/sbin/ppp

/usr/sbin/sntp

/usr/sbin/sshd

/usr/sbin/tcpdump

/usr/sbin/uefisign

PEM / pkcs7

/usr/sbin/unbound

/usr/sbin/unbound-anchor

/usr/sbin/unbound-control

/usr/sbin/wpa_supplicant

/usr/sbin/freebsd-update

openssl rsautl -verify

/usr/sbin/portsnap

openssl rsautl -verify