How to prevent RC4 removal

I use Python-scripts with shareplum to communicate with our onprem SharePoint. For authentication we still use ntlm. (Yes we know its deprecated, but the loginwindow for shibboleth was no longer suppported by macOS so our mac-users couldn’t their Office with SharePoint so we had to switch to ntlm.)

When I came back from vacation this week after the update I now get the following warning:
/home/user/.local/lib/python3.11/site-packages/spnego/_ntlm_raw/crypto.py:46: CryptographyDeprecationWarning: ARC4 has been moved to cryptography.hazmat.decrepit.ciphers.algorithms.ARC4 and will be removed from this module in 48.0.0.

How do I deal with it when it become true ? (Changing the auth-protocol on SharePoint is right now no option.)

As I read the warning RC4 will not be removed but moved.

That means that if you still want to use it the code has to change to use “cryptography.hazmat.”, for what to expect, see:

1 Like

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.