Re: OpenSSL MD5 verification disabled?

doesn't honestly matter md5 and soon sha1 are insecure /phased out inform the patch creator or submit a patch with it if you must use a insecure hash like md5 Corey W Sheldon Freelance IT Consultant, Multi-Discipline Tutor (p) 310.909.7672 G+: Linked

Re: OpenSSL MD5 verification disabled?

On Tue, Mar 17, 2015 at 11:24 AM, Michael Catanzaro wrote: > Hi, I don't have any comment on the issue for your particular software > package, since I don't know how important the security of the TLS is for > that package and I'm not familiar with your compatibility needs. > However, I see the fo

Re: OpenSSL MD5 verification disabled?

Hi, I don't have any comment on the issue for your particular software package, since I don't know how important the security of the TLS is for that package and I'm not familiar with your compatibility needs. However, I see the following lines in the patch: // Work around ill-considered decision b

Re: OpenSSL MD5 verification disabled?

On 17.3.2015 17:00, Richard Shaw wrote: I've got a new BZ report for my package TrustedQSL which uses OpenSSL to very a certificate used for uploading ham radio contacts to an online logbook. The system uses MD5 which appears to be disabled in F21+. https://bugzilla.redhat.com/show_bug.cgi?id=12

OpenSSL MD5 verification disabled?

I've got a new BZ report for my package TrustedQSL which uses OpenSSL to very a certificate used for uploading ham radio contacts to an online logbook. The system uses MD5 which appears to be disabled in F21+. https://bugzilla.redhat.com/show_bug.cgi?id=1202157 I don't like the workaround specifi