• Paladin of the Pegasos
    Paladin of the Pegasos
    Posts: 1230 from 2012/11/10
    From: Manchester, UK/GB

    Piru wrote: (reply to NewSense thread #929) While jacek already gave you the beef, here are the technical details in case someone really wants to know what happened there. The gist of it is that OpenSSL Team decided to do the following change for OpenSSL 3: [...The security strength of SHA1 and MD5 based signatures in TLS has been reduced...]

    In the end the specific code block reducing the security was just disabled. This surgically fixes the issue without need to touch SECLEVEL itself.

    I really appreciate you guys (jacadcaps - aka Jacek & Piru - aka Harry) fixing things so they work with inferior security mechanisms. You'd have thought an ISP would have had a better security system understanding, and keep it up to the latest security mechanisms, to access their site seeing as they (PlusNet) are providing broadband services throughout the UK-GB. :-)
    MacMini 1.5GHz,10,2,64MB VRAM,1GB,Airport, Bluetooth,A1016 Keyboard,T-RB22 Mouse,DVD-RW-DL+CD-RW,Iomega MiniMax,Belkin 6 port 3 x Firewire/3 x, USB2, MorphOS 3.12, Mac OSX 10.4/10.5, A1138+A1139 PwrBk MOS v3.12,Model 5,8/5,9, & PowerMac G5 2.3GHz(DP)
  • »08.01.22 - 00:48