Re: TLS init: ca md too weak

Bradley, Jeffrey, thanks to your sugegstions. I was able to restore the service by slapmodify'ing the this ldif: dn: cn=config changetype: modify replace: olcTLSCipherSuite olcTLSCipherSuite: TLSv1.3:TLSv1.2:@SECLEVEL=0 Unfortunately SECLEVEL=1 was still too high but as I wrote before it

Re: [EXTERNAL] TLS init: ca md too weak

You should be able to regenerate the certificates with a secure signing algorithm. This thread has some other alternatives, like recompilining. OpenSSL with an insecure flag. [apple-touch-i...@2.png]

Re: TLS init: ca md too weak

On Wed, Apr 17, 2024 at 3:21 AM Uwe Sauter wrote: > Hi all, > > one of my Rocky Linux 8 servers was updated automatically to 2.6.7 this > night from the Symas repo. > The install script seems to include an automated restart of the service > but that failed with: > > main: TLS init def ctx

TLS init: ca md too weak

Hi all, one of my Rocky Linux 8 servers was updated automatically to 2.6.7 this night from the Symas repo. The install script seems to include an automated restart of the service but that failed with: main: TLS init def ctx failed: -1 error:0A00018E:SSL routines::ca md too weak As this is an