I reanalyzed the bug today and working with the EPEL maintainer, submitted an updated python-crypto2.6 package: https://admin.fedoraproject.org/updates/python-crypto2.6-2.6.1-2.el6
It's not ideal as it disables the C extension in order to make the code more secure but i don't think that will be too bad for ansible's usage. This is only used for vault and vault typically isn't doing enough encryption and decryption for the speed difference to matter. -toshio On Fri, Feb 13, 2015 at 3:00 AM, Giovanni Tirloni <[email protected]> wrote: > On Mon, 09 Feb 2015 07:34 -0800, Chris Short <[email protected]> > wrote: >> I just built a clean CentOS 6.6 server and have ansible installed. All >> packages are up to date and I'm still seeing this error: >> >> [WARNING]: The version of gmp you have installed has a known issue >> regarding >> timing vulnerabilities when used with pycrypto. If possible, you should >> update >> it (i.e. yum update gmp). > > Relevant discussion: > > https://github.com/ansible/ansible/issues/6941 > https://bugzilla.redhat.com/show_bug.cgi?id=1103566 > > Giovanni > > -- > You received this message because you are subscribed to the Google Groups > "Ansible Project" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To post to this group, send email to [email protected]. > To view this discussion on the web visit > https://groups.google.com/d/msgid/ansible-project/1423825255.151173.227053421.4A477370%40webmail.messagingengine.com. > For more options, visit https://groups.google.com/d/optout. -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/CAG9juEryQKHiu4oeRVhV3Mw8r3wyr%3Dt_g6bng3%2B0O3jtuKe%2ByQ%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
