CVS: cvs.openbsd.org: src

Theo Buehler Tue, 19 Jul 2022 11:55:28 -0700

CVSROOT:        /cvs
Module name:    src
Changes by:     t...@cvs.openbsd.org    2022/07/19 12:55:12


Modified files:
        lib/libssl     : ssl_seclevel.c 

Log message:
Disallow MD5 and SHA-1 HMACs depending on the security level

Ciphers using an MD5 HMAC are not allowed on security levels >= 1 and
using a SHA-1 HMAC is disallowed on security levels >= 4. This disables
RC4-MD5 by default.

ok jsing

CVS: cvs.openbsd.org: src

Reply via email to