On Wed, 2007-01-03 at 18:30 -0600, William A. Rowe, Jr. wrote: > If configuring for a FIPS ssl environment, we will also have to stub out MD5 > entirely since it too is a prohibited algorithm.
Apparently, they claim it's still good for HMAC stuff. -- Bojan
