> The secure plugin only uses a SHA-1 hash function from openSSL as far as I > can remember. There's a public domain implementation of SHA-1 by Steve Reid (google for his name and "SHA-1". So, I'd like to suggest that we completely eliminate any external dependencies by including Steve's code in the plugin. -Thomas