I released mod_nss 1.0.13 this morning. The major changes are: * Check for Apache user owner/group read permissions of NSS database at startup * Update default ciphers to something more modern and secure * Check for host and netstat commands in gencert before trying to use them * Don't ignore NSSProtocol when NSSFIPS is enabled * Use proper shell syntax to avoid creating /0 in gencert * Add server support for DHE ciphers * Extract SAN from server/client certificates into env * Fix memory leaks and other coding issues caught by clang analyzer
rob _______________________________________________ Mod_nss-list mailing list [email protected] https://www.redhat.com/mailman/listinfo/mod_nss-list
