[Bug 1972056] Re: [openssl3] please sync openssl.cnf to ease changing security level
Brian Murray
1972056 at bugs.launchpad.net
Thu May 12 15:17:27 UTC 2022
** Changed in: openssl (Ubuntu)
Importance: Undecided => Medium
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to openssl in Ubuntu.
https://bugs.launchpad.net/bugs/1972056
Title:
[openssl3] please sync openssl.cnf to ease changing security level
Status in openssl package in Ubuntu:
Confirmed
Status in openssl package in Debian:
Unknown
Bug description:
openssl.cnf as provided misses some directive, which make it a bit
difficult to change security level, which since openssl 3 disables
SHA1 signatures.
See also this Debian bug https://bugs.debian.org/cgi-
bin/bugreport.cgi?bug=1010360 and the committed fix:
https://salsa.debian.org/debian/openssl/-/commit/b507914c40270e32cde6afcc8af93707c225e7f4
Can you please sync this change in Ubuntu openssl?
This way one should just add a single directive to change the security
level.
Thanks.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1972056/+subscriptions
More information about the foundations-bugs
mailing list