ius-coredev team mailing list archive
-
ius-coredev team
-
Mailing list archive
-
Message #02900
[Bug 1034961] Re: WL: OpenSSL 1.0.1 or greater
Sorry to dredge an old issue, but I notice that the IUS package is
following Redhat by disabling the ECC ciphers ("no-ec no-ec2m no-ecdh
no-ecdsa" parameters on Configure). There has been a bug against Fedora
rawhide regarding this for about 6 years, but I'm wondering if you could
just go ahead and enable the ECC ciphers on this package.
More info:
https://bugzilla.redhat.com/show_bug.cgi?id=319901
http://cr.yp.to/ecdh/patents.html
http://security.stackexchange.com/questions/3519/can-ecc-be-used-without-infringing-on-patents
** Bug watch added: Red Hat Bugzilla #319901
https://bugzilla.redhat.com/show_bug.cgi?id=319901
--
You received this bug notification because you are a member of IUS Core
Development, which is subscribed to IUS Community Project.
https://bugs.launchpad.net/bugs/1034961
Title:
WL: OpenSSL 1.0.1 or greater
Status in IUS Community Project:
Fix Committed
Bug description:
Would be great to see OpenSSL 1.0.1 or greater added to the repo.
CentOS 6 shipped with 1.0, however 1.0.1 has some significant changes
that are needed by many things including SPDY in web servers (Next
Protocol Negotiation TLS). Over the course of CentOS 6's live it's
becoming increasingly important.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ius/+bug/1034961/+subscriptions
References