This version of openssl also eventually breaks unbound-control of package 
unbound for some people:

unbound-control <any cmd>

may gives an error:
140493601018752:error:140AB18F:SSL routines:SSL_CTX_use_certificate:ee key too 

#CipherString = DEFAULT@SECLEVEL=2

fixes this.

The real fix is probably to generate new keys for unbound-control and unbound 
with unbound-control-setup. Just calling unbound-control-setup is not enough, 
though, as unbound-control does not create new ones if these keys already 
exists. So the existing ones have to be removed first.

Wolfgang Walter
Studentenwerk München
Anstalt des öffentlichen Rechts

Reply via email to