I actually worked on that for an hour two days ago and failed to get rid of all
the sha1’s. So we postponed this and will generate a new key
Sent using a virtual keyboard on a phone
> On May 25, 2022, at 18:49, Daniel Kahn Gillmor wrote:
>
> Hi folks--
>
> I just noticed that the self-sigs
Hi folks--
I just noticed that the self-sigs over the libreswan signing key and its
subkey binding signature are all made using SHA1.
As SHA1 is further deprecated, this makes the certificate difficult to
use, since the self-sig is what asserts signing capabilities from the
primary key -- if the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
The Libreswan Project has released libreswan 4.7
This release adds support for EAPTLS, FreeBSD/NetBSD fixes, and
fixes an interop issue with Android 12.
This latest version of libreswan can be downloaded from:
On May 24, 2022, at 20:34, Balaji Thoguluva wrote:
>
>
> Thanks Paul.
>
> Further question.
>
> Suppose I have a socket descriptor already created for a local interface
> which can be used to send and receive IKE packets to an external IKE peer.
>
> Can pluto daemon be configured with the