[Bug 1455990] [NEW] quassel-core generates an insecure certificate upon installation
Michael Marley
michael at michaelmarley.com
Sun May 17 23:13:36 UTC 2015
Public bug reported:
After installation, quassel-core generates a 1024-bit certificate using
the SHA1 hash. Both of these are considered deprecated and somewhat
insecure. The attached patch updates the postinst script to generate a
4096-bit certificate using the SHA256 hash instead.
The SHA256 certificate will not cause any compatibility problems because
OpenSSL 1.0.0 and later support SHA256 certificates. All supported
versions of Ubuntu and Debian have at least 1.0.1 and the supported
Windows and Mac builds of Quassel are additionally compiled with a
recent enough version to support the SHA256 certificate.
** Affects: quassel (Ubuntu)
Importance: Undecided
Status: New
** Patch added: "certificate.debdiff"
https://bugs.launchpad.net/bugs/1455990/+attachment/4399156/+files/certificate.debdiff
** Summary changed:
- Quasselcore generates an insecure certificate upon installation
+ quassel-core generates an insecure certificate upon installation
--
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to quassel in Ubuntu.
https://bugs.launchpad.net/bugs/1455990
Title:
quassel-core generates an insecure certificate upon installation
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/quassel/+bug/1455990/+subscriptions
More information about the kubuntu-bugs
mailing list