Using something other than MD5 in 3.0.19 - FIPS
Arran Cudbard-Bell
a.cudbardb at freeradius.org
Fri May 31 23:49:31 CEST 2019
> Which makes FIPS mode sort of useless. All it does is ensure that you don't *accidentally* use MD5.
Kind of, it's more like OpenSSL says it's in FIPS mode, and we use our own internal implementation of MD5.
> Those changes might be portable back to v3. But it wouldn't be trivial.
It's not.
-Arran
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: Message signed with OpenPGP
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20190531/843b1bd2/attachment.sig>
More information about the Freeradius-Users
mailing list