Browse source

Changelog

Query



From:
To:

Branch:
Path:
Message:
BugID:
User: +

Format:

Statistics

Lines added/removed recently

Monday 24 February 2020

2020-02-24 02:10:59 (3 years ago) by Tobias S. Josefowitz <tobij@tobij.de>

pike/lib/modules/SSL.pmod/Connection.pike (+4/-1)(5 lines)
pike/lib/modules/SSL.pmod/Context.pike (+17/-0)(17 lines)
branch: master

SSL: Do not accept MD2, MD5 and SHA1 signatures any longer

Web browsers and others have distrusted SHA1 a long while ago, MD2 and
MD5 are at this point simply dangerous to support. However, we now
support configuration of supported signature algorithms via
@[SSL.Context] in case any use case simply needs to support older
signature algorithms.

pike/lib/modules/SSL.pmod/Connection.pike (+4/-1)(5 lines)
pike/lib/modules/SSL.pmod/Context.pike (+17/-0)(17 lines)
branch: 8.0

SSL: Do not accept MD2, MD5 and SHA1 signatures any longer

Web browsers and others have distrusted SHA1 a long while ago, MD2 and
MD5 are at this point simply dangerous to support. However, we now
support configuration of supported signature algorithms via
@[SSL.Context] in case any use case simply needs to support older
signature algorithms.

Bugs? Suggestions?