ow to change the signature algorithm from MD5 to SHA1 in OpenSSL
To: security-discuss at opensolaris.org
Date: Tuesday, 27 October, 2009, 10:05 PM
If you're going to go through the trouble of changing the signature algorithm
from MD5, choose a strong algorithm instead of another weak
Thanks a lot. This works.
--- On Tue, 27/10/09, Wolfgang Ley wrote:
From: Wolfgang Ley
Subject: Re: How to change the signature algorithm from MD5 to SHA1 in OpenSSL
To: security-discuss at opensolaris.org
Date: Tuesday, 27 October, 2009, 3:21 PM
Hi,
this has been answered yesterday. Please
If you're going to go through the trouble of changing the signature algorithm
from MD5, choose a strong algorithm instead of another weak one. SHA1,
although not as weak as MD5, is not recommended either. See this comnment from
NIST:
"NIST Comments on Cryptanalytic Attacks on SHA-1"
http://cs
Hi,
this has been answered yesterday. Please see the forum postings.
You'll have to add the "default_md=sha1" line to the [ req ] section in the
config file (not just modify the default_md entry in the ca section as this one
is not used for the req command).
In addition: You're not running Ope
Hello,
I want to generate a self signed certificate that uses 'sha1RSA' as signature
algorithm.
I tried changing the default signature algorithm in OpenSSL config file
(default_md), but there is no effect of the change on the certificate. The
certificate shows 'md5RSA' as the signature algorit
Hello,
I want to generate a self signed certificate that uses 'sha1RSA' as signature
algorithm.
I tried changing the default signature algorithm in OpenSSL config file
(default_md), but there is no effect of the change on the certificate. The
certificate shows 'md5RSA' as the signature algorit
Hi,
there are multiple sections in the openssl.conf file and the provided default
config file only has the default_md keyword in the CA section.
You may want to add the "default_md=sha1" line to the [ req ] section, too.
Bye,
Drusus.
--
This message posted from opensolaris.org
