tech-security: incorrect default

Subject: incorrect default_md in openssl.cnf
To: None <tech-security@netbsd.org>
From: Steven M. Bellovin <smb@cs.columbia.edu>
List: tech-security
Date: 03/16/2005 11:40:14

/usr/share/examples/openssl/openssl.cnf has a default_md setting of 
md5.  This really needs to be sha1.

		--Prof. Steven M. Bellovin, http://www.cs.columbia.edu/~smb