#8687: Weak SSL certificates in notebooks
------------------------+---------------------------------------------------
Reporter: sneves | Owner: jason, was
Type: defect | Status: new
Priority: major | Milestone:
Component: notebook | Keywords:
Author: | Upstream: N/A
Reviewer: | Merged:
Work_issues: |
------------------------+---------------------------------------------------
To generate the certificate required for secure (https) notebooks, openssl
is called (in Linux, at least). By default, openssl generates 512bit RSA
keys, which are far too weak to be used with any degree of confidence.
The offending code is in the sagenb module, in the run_notebook.py file,
line 100. A simple fix is to change the line to:
cmd = ['openssl genrsa 2048 > %s' % private_pem]
--
Ticket URL: <http://trac.sagemath.org/sage_trac/ticket/8687>
Sage <http://www.sagemath.org>
Sage: Creating a Viable Open Source Alternative to Magma, Maple, Mathematica,
and MATLAB
--
You received this message because you are subscribed to the Google Groups
"sage-trac" group.
To post to this group, send email to [email protected].
To unsubscribe from this group, send email to
[email protected].
For more options, visit this group at
http://groups.google.com/group/sage-trac?hl=en.
