ius-coredev team mailing list archive

Thread
Date

[Bug 1034961] Re: WL: OpenSSL 1.0.1 or greater

To: ius-coredev@xxxxxxxxxxxxxxxxxxx
From: James Kennedy <1034961@xxxxxxxxxxxxxxxxxx>
Date: Wed, 03 Jul 2013 22:23:43 -0000
Reply-to: Bug 1034961 <1034961@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Sorry to dredge an old issue, but I notice that the IUS package is
following Redhat by disabling the ECC ciphers ("no-ec no-ec2m no-ecdh
no-ecdsa" parameters on Configure). There has been a bug against Fedora
rawhide regarding this for about 6 years, but I'm wondering if you could
just go ahead and enable the ECC ciphers on this package.

More info:
https://bugzilla.redhat.com/show_bug.cgi?id=319901
http://cr.yp.to/ecdh/patents.html
http://security.stackexchange.com/questions/3519/can-ecc-be-used-without-infringing-on-patents


** Bug watch added: Red Hat Bugzilla #319901
   https://bugzilla.redhat.com/show_bug.cgi?id=319901

-- 
You received this bug notification because you are a member of IUS Core
Development, which is subscribed to IUS Community Project.
https://bugs.launchpad.net/bugs/1034961

Title:
  WL: OpenSSL 1.0.1 or greater

Status in IUS Community Project:
  Fix Committed

Bug description:
  Would be great to see OpenSSL 1.0.1 or greater added to the repo.

  CentOS 6 shipped with 1.0, however 1.0.1 has some significant changes
  that are needed by many things including SPDY in web servers (Next
  Protocol Negotiation TLS).  Over the course of CentOS 6's live it's
  becoming increasingly important.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ius/+bug/1034961/+subscriptions

References

[Bug 1034961] [NEW] WL: OpenSSL 1.0.1 or greater
From: Robert-accettura, 2012-08-09