Re: Proposal: Remove MD5 / SHA1 support from veriexec

To: tech-security%netbsd.org@localhost
Subject: Re: Proposal: Remove MD5 / SHA1 support from veriexec
From: Sevan Janiyan <venture37%geeklan.co.uk@localhost>
Date: Tue, 22 Aug 2017 01:50:30 +0100

It seem I forgot a couple of things, the reason why I'm proposing the
change is because these ciphers are broken and are of no benefit in the
context of this tool. I'm proposing the staged process as a migration
path rather than ripping it flat out for NetBSD 8 though I have no
objection to doing that if folks are happy with that.

On 08/22/17 00:12, Sevan Janiyan wrote:
> Part 2:
> http://www.netbsd.org/~sevan/patch-veriexec-nomd5-sha1.txt

This diff has been updated to cover all references to
VERIFIED_EXEC_FP_MD5 & SHA1.

Sevan

Follow-Ups:
- Re: Proposal: Remove MD5 / SHA1 support from veriexec
  - From: Taylor R Campbell
- Re: Proposal: Remove MD5 / SHA1 support from veriexec
  - From: Thor Lancelot Simon

References:
- Proposal: Remove MD5 / SHA1 support from veriexec
  - From: Sevan Janiyan

Prev by Date: Proposal: Remove MD5 / SHA1 support from veriexec
Next by Date: Re: Proposal: Remove MD5 / SHA1 support from veriexec
Previous by Thread: Proposal: Remove MD5 / SHA1 support from veriexec
Next by Thread: Re: Proposal: Remove MD5 / SHA1 support from veriexec
Indexes:

Home | Main Index | Thread Index | Old Index