Using something other than MD5 in 3.0.19 - FIPS

Arran Cudbard-Bell a.cudbardb at
Fri May 31 23:49:31 CEST 2019

>  Which makes FIPS mode sort of useless.  All it does is ensure that you don't *accidentally* use MD5.

Kind of, it's more like OpenSSL says it's in FIPS mode, and we use our own internal implementation of MD5.

>  Those changes might be portable back to v3.  But it wouldn't be trivial.

It's not.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: Message signed with OpenPGP
URL: <>

More information about the Freeradius-Users mailing list