Nils Larsch wrote:
Hi,
what about changing the default digest algorithm in apps/x509.c,
apps/req.c and apps/openssl.cnf from md5 to something a bit more
secure like sha-1 ? MD5 shouldn't be used anymore, even by lazy
users who don't explicitly set the digest algorithm.
Definitely.
--
http://www.apache-ssl.org/ben.html http://www.thebunker.net/
"There is no limit to what a man can do or how far he can go if he
doesn't mind who gets the credit." - Robert Woodruff
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [email protected]
Automated List Manager [EMAIL PROTECTED]
