Added support for the automatic elliptic curve selection for the ECDHE key exchange in TLS.Added support for the Datagram Transport Layer Security TLS (DTLS) protocol version 1.2.Various other refinements have been made with the update to 1.0.2k. MD5, MD4, and SHA0 can no longer be used as signing algorithms in OpenSSL.sha256 message digest algorithm (default for signatures).md5 message digest algorithm (default for dgst sub-command).certificates with EC keys and DSA or SHA-256 signatures.certificates with RSA keys and SHA-1 or SHA-256 signatures.SSLv2 - REMOVED IN RHEL7.4/openssl-1.0.2k.This article is part of the Securing Applications CollectionÄue to the serious issues with the design of TLS and implementation issues in openssl uncovered during the lifetime of RHEL7 you should always use the latest version but at least openssl-1.0.2k-21.el7_9 Openssl on RHEL7 is originally based on openssl-1.0.1e but was rebased to openssl-1.0.2k with RHEL7.4
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |