[Bug 7618] Obtain variance to keep producing SHA-1 signatures for rules

bugzilla-daemon Mon, 01 Oct 2018 02:13:36 -0700

https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7618


--- Comment #7 from Kevin A. McGrail <kmcgr...@apache.org> ---
Variance no longer needed "the requirement to drop SHA1 was initially MUST NOT
but
      as dg says it's now SHOULD, at
      http://www.apache.org/dev/release-distribution#sigs-and-sums -
      so nothing to approve indeed, SpamAssassin can continue to use
      SHA1 for a transition period."

Recommend as a team that we notify people that Dec 31, 2019 we will stop
producing SHA1 rule signatures.

-- 
You are receiving this mail because:
You are the assignee for the bug.

[Bug 7618] Obtain variance to keep producing SHA-1 signatures for rules

Reply via email to