Overview
Request 87436 superseded
- Build with -DSSL_FORBID_ENULL so servers are not
able to use the NULL encryption ciphers (Those offering no
encryption whatsoever). (forwarded request 87144 from elvigia)
- Created by dirkmueller
- In state superseded
- Superseded by 88591
- Open review for autobuild-team
Request History
dirkmueller created request
- Build with -DSSL_FORBID_ENULL so servers are not
able to use the NULL encryption ciphers (Those offering no
encryption whatsoever). (forwarded request 87144 from elvigia)
coolo added a reviewer
Please review sources
lnussel added a reviewer
questionable change
lnussel declined request
I don't think disabling NULL ciphers at compile time is a good idea.
There may be use cases for authenticated but not encrypted
connections.
supersede declined request with a followup request
licensedigger accepted review
{"approve": "license and version number unchanged: 1.0.0e"}
coolo accepted review
Builds for repo openSUSE_Factory
Output of check script (non-fatal):
- package has baselibs.conf: (unchanged)
(W) openssl.spec: patch 3 CVE-2010-1633_and_CVE-2010-0742.patch is commented out
(W) openssl.spec: patch 4 patchset-19727.diff is commented out
(W) openssl.spec: patch 5 CVE-2010-2939.patch is commented out
(W) openssl.spec: patch 6 CVE-2010-3864.patch is commented out
(W) openssl.spec: patch 8 CVE-2011-0014.patch is commented out
lnussel declined review
I don't think disabling NULL ciphers at compile time is a good idea.
There may be use cases for authenticated but not encrypted
connections.