Yeah, the OpenSSL CLI sucks. So what's to be done?

Sure, we can build a 25519-specific tool with a less footgun-y interface. Fine, whatever, for that one use case.

Or we can build an alternative OpenSSL CLI that explodes OpenSSL and its numerous useful features in a general way and helps fix lots of use cases.

Nothing is to be done. Just don't use the OpenSSL CLI. It's a deeply cursed concept for a tool!

quotemstr 4 days ago | parent | next [-]

A command like cryptography swiss army knife useful though. If not openssl, then what?

It's useful as a toy and a learning tool, but for nothing else. For those two things, OpenSSL is fine as it is.

	▲	why-o-why 4 days ago \| parent [-]
		[flagged]

pamcake 4 days ago | parent | prev [-]

[dead]