Jeffrey Walton (noloader) wrote on 2015-05-12: #17
This can now be closed due to USN-2606-1
(http://www.ubuntu.com/usn/usn-2606-1/).
Good work. I'm glad to see TLS 1.2 is now available to LTS.
-
O It does work on Apache now. Does it work on nginx also?
--
You received this b
TLSv1.2 was re-enabled in Ubuntu 12.04 LTS in May 2015, so if you
install all the updates, you should be getting it.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1256576
Title:
Ubuntu 12.04 LTS: Op
Marc Deslauriers (mdeslaur) wrote on 2013-12-02:
Unfortunately, because of the large number of sites which incorrectly handled
TLS v1.2 negotiation, we had to disable TLS v1.2 on the client.
Marc Deslauriers (mdeslaur) wrote on 2014-12-08:#15
Apache2 in 12.04 supports TLSv1.2 just fine,
This can now be closed due to USN-2606-1
(http://www.ubuntu.com/usn/usn-2606-1/).
Good work. I'm glad to see TLS 1.2 is now available to LTS.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1256576
Tit
Mark what exact tests did you run?
https://www.ssllabs.com/ssltest/analyze.html by chance?
In your apache config file did you have:
SSLProtocol -ALL -SSLv3 +TLSv1 +TLSv1.1 +TLSv1.2
Reference for that command (Ubuntu 12.04 uses apache 2.2):
http://httpd.apache.org/docs/2.2/mod/mod_ssl.html
--
Yo
Apache2 in 12.04 supports TLSv1.2 just fine, I've been running test
scripts against it.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1256576
Title:
Ubuntu 12.04 LTS: OpenSSL downlevel version is 1.
This new TLS 1.2 support does not seem to be reflected in Apache2 on
12.04 LTS. It's all well and good that OpenSSL may now be running 1.0.1,
but it does not look as though apache has been recompiled against it,
and so it is still stuck with only TLS 1.0, which is vunerable to the
BEAST attack, the
That USN doesn't re-enable TLSv1.2 by default for clients in Ubuntu
12.04. It simply fixes an issue if someone _forced_ TLSv1.2 to be
enabled.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1256576
Tit
Closing due to "USN-2367-1: OpenSSL update",
http://www.ubuntu.com/usn/usn-2367-1/.
** Changed in: openssl (Ubuntu)
Status: Confirmed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bu
So, If upgrade from 12.04 to 13.04,
Will the openssl have full support in TLSv1.2, Both in server and
client.
I used ubuntu for development and need to test server to support TLSv1.2
and above only.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscrib
OpenSSL 1.0.1f was released today. http://marc.info/?l=openssl-
announce&m=138902140315854&w=2.
There are three CVE remediations included in the release: CVE-2013-4353,
CVE-2013-6449, CVE-2013-6450.
http://www.openssl.org/news/openssl-1.0.1-notes.html.
There's also an Apple SecureTransport bug wo
Status changed to 'Confirmed' because the bug affects multiple users.
** Changed in: openssl (Ubuntu)
Status: New => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1256576
Title:
Ub
FYI, I have re-enabled full TLSv1.2 support in the dev release (Ubuntu 14.04
LTS).
It is being tracked in bug 1257877
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1256576
Title:
Ubuntu 12.04 LTS:
> Ubuntu 12.04 contains openssl 1.0.1, which supports TLS v1.2.
My bad I should have been using `apt-cache show` instead of `ldd`.
> Unfortunately, because of the large number of sites which incorrectly handled
> TLS v1.2 negotiation, we had to disable TLS v1.2 on the client.
>
> See the follo
Browsers use NSS, which doesn't have the same compatibility issues
OpenSSL has. (GnuTLS doesn't seem to have the issues either) Also,
they've implemented workarounds by retrying connections without TLSv1.2
when the initial connection failed.
That being said, we'll evaluate whether we can re-enable
There are 2 issues with OpenSSL/TLSv1.2 in Ubuntu. I'm on 12.04, but I
see the same patch in newer Ubuntu versions.
1) TLSv1.2 is removed from SSLv23_method(). It's technically fine
policy decision. But I think it should be reverted at least new Ubuntu
versions. All the sites mentioned in +1y
Ubuntu 12.04 contains openssl 1.0.1, which supports TLS v1.2.
Unfortunately, because of the large number of sites which incorrectly
handled TLS v1.2 negotiation, we had to disable TLS v1.2 on the client.
See the following bugs for more information:
https://bugs.launchpad.net/ubuntu/+source/opens
** Project changed: openssl => openssl (Ubuntu)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1256576
Title:
Ubuntu 12.04 LTS: OpenSSL downlevel version is 1.0.0, and does not
support TLS 1.2
To
Sorry guys. I can't find the OpenSSL package, so I cant classify this.
** Package changed: ubuntu => openssl
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1256576
Title:
Ubuntu 12.04 LTS: OpenSSL d
Thank you for taking the time to report this bug and helping to make
Ubuntu better. It seems that your bug report is not filed about a
specific source package though, rather it is just filed against Ubuntu
in general. It is important that bug reports be filed about source
packages so that people
20 matches
Mail list logo
