← Back to team overview

maria-discuss team mailing list archive

Re: mariadb + FIPS


You mentioned, you use MariaDB 10.3 with FIPS. If you can use it, then it is not disabled by OpenSSL, since SHA1 is required for usual authentication with non-empty password.

From: Maria-discuss <maria-discuss-bounces+vvaintroub=gmail.com@xxxxxxxxxxxxxxxxxxx> on behalf of Captain Wiggum <captwiggum@xxxxxxxxx>
Sent: Monday, September 2, 2019 8:28:27 PM
To: Ian Gilfillan <ian@xxxxxxxxxxx>
Cc: maria-discuss@xxxxxxxxxxxxxxxxxxx <maria-discuss@xxxxxxxxxxxxxxxxxxx>
Subject: Re: [Maria-discuss] mariadb + FIPS

+ list

On Mon, Sep 2, 2019 at 12:27 PM Captain Wiggum <captwiggum@xxxxxxxxx<mailto:captwiggum@xxxxxxxxx>> wrote:
Thanks Ian for your reply.
The link mentioned how to enable FIPS mode at the system level.
But nothing about how to setup mariadb server when the system is in FIPS mode.
The mariadb server uses SHA1, which openssl has disabled due to FIPS mode.

* Unfortunately it is looking like mariadb server is not compatible with FIPS.