tech-security archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Proposal: Remove MD5 / SHA1 support from veriexec

As a two part process, I propose we remove the ability to generate
signatures using SHA1/MD5 with veriexecgen as a part of NetBSD 8.
Then in HEAD for NetBSD 9, we remove support for these hashes from the
remaining components & kernel configuration files.

Part 1:

Part 2:

Thoughts / objections?


Home | Main Index | Thread Index | Old Index