[jaenicke - Fri Feb 14 16:39:21 2003]: > [levitte - Wed Dec 4 21:19:17 2002]: > > > MD5 is one of those algorithms that's used so much it isn't easy to > > disable. However, you only had problems in two files with it, we're > > apparently doing fine. I'll investigate and get back to you. > > Hmm. In ssl/s3_srvr.c it seems, that both digest lengths will be > pretty hard to replace...
I entirely agree. I've played with trying to enforce no-md5. It's just not a good idea. I'm suggesting that we check a bit more carefully what people are trying to disable and not allow disabling just about everything. Among the stuff that shouldn't be possible to disable are MD5 and SHA1... -- Richard Levitte [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
