mod_nss.git/ChangeLog, branch master Unnamed repository; edit this file 'description' to name the repository. Update ChangeLog: DHE ciphers, gencert, FIPS, permission, ciphers 2016-03-01T16:42:27+00:00 Rob Crittenden rcritten@redhat.com 2016-02-29T22:41:39+00:00 a06c95d3b9bbefd6a4bf6c6561d6e32891f791f4 * Check for Apache user owner/group read permissions of NSS database * Update default ciphers to something more modern and secure * Fix test for DH cipher directive * Check for test and netstat before trying to use them * Don't ignore NSSProtocol when NSSFIPS is enabled Based on patch by Matthew Harmsen <mharmsen@redhat.com> * Use proper shell syntax to avoid creating /0 * tests: Centralize the openssl ciphers flags when comparing * Basic test case for DHE cipher negotiation * Remove -DH from test strings, duplicate test, fix test * Add server support for DHE ciphers. 
* Check for Apache user owner/group read permissions of NSS database
* Update default ciphers to something more modern and secure
* Fix test for DH cipher directive
* Check for test and netstat before trying to use them
* Don't ignore NSSProtocol when NSSFIPS is enabled
  Based on patch by Matthew Harmsen <mharmsen@redhat.com>
* Use proper shell syntax to avoid creating /0
* tests: Centralize the openssl ciphers flags when comparing
* Basic test case for DHE cipher negotiation
* Remove -DH from test strings, duplicate test, fix test
* Add server support for DHE ciphers.
Update CL SIGHUP, NSSProxyNickname, SNI alert, FakeBasicAuth 2016-01-19T21:12:09+00:00 Rob Crittenden rcritten@redhat.com 2016-01-19T21:12:09+00:00 09eff5ae973290ff333928487e13974aa7ad0764 - Drop the check that NSSProxyNickname be required - Add basic reverse proxy test case - Don't send SSL alert on SNI lookup failure - Fail for colons in credentials with FakeBasicAuth - Always call SSL_ShutdownServerSessionIDCache() in ModuleKill - Document some python dependencies needed by make check - Add cipher test for ECDH+aRSA - Quote gcm and sha384 config values when comparing them 
- Drop the check that NSSProxyNickname be required
- Add basic reverse proxy test case
- Don't send SSL alert on SNI lookup failure
- Fail for colons in credentials with FakeBasicAuth
- Always call SSL_ShutdownServerSessionIDCache() in ModuleKill
- Document some python dependencies needed by make check
- Add cipher test for ECDH+aRSA
- Quote gcm and sha384 config values when comparing them
Become 1.0.12 2015-10-02T21:07:58+00:00 Rob Crittenden rcritten@redhat.com 2015-10-02T21:07:58+00:00 3e91d3dbc5ded79d42a02edcce7b6a0d895ecdeb 






Update changelog with reverse proxy SNI and whitespace cleanup
2015-10-02T20:51:57+00:00

Rob Crittenden
rcritten@redhat.com

2015-10-02T15:29:13+00:00

b09c47fa2acfdb14ce8ef18edb644ec15a740784












Update ChangeLog, fix frees, build Apache 2.2, autoconf
2015-10-02T20:51:56+00:00

Rob Crittenden
rcritten@redhat.com

2015-10-01T18:14:11+00:00

3324b6eb2b08c552f65f529e549d8fce0afdee0d












Update changelog with SNI, SECURE_RENEG, hints
2015-10-02T20:51:56+00:00

Rob Crittenden
rcritten@redhat.com

2015-09-25T16:40:30+00:00

9318b09667ae2c2546ed508721599505fc6e0b26












Update changelog with memory, SHA384 and OpenSSL ciphers
2015-10-02T20:51:56+00:00

Rob Crittenden
rcritten@redhat.com

2015-09-24T19:53:18+00:00

ea7584f67ef0e522254c3806cc0356e89594c711












Update ChangeLog with doc, compiler warning and cipher fixes
2015-10-02T20:51:48+00:00

Rob Crittenden
rcritten@redhat.com

2015-08-27T17:17:57+00:00

3d7ef05d67c4eca7b72f773380bf7fdff4e7e372












Update ChangeLog with some recent updates
2015-07-27T19:09:44+00:00

Rob Crittenden
rcritten@redhat.com

2015-07-27T19:09:44+00:00

5611b6db2332d1a285cfebf29aa8e6ff617fb516

 * Add RenegBufferSize option (#1214366)
 * Add support for TLS Session Tickets (RFC 5077)
 * Fix logical AND support in OpenSSL cipher compatibility
   (CVE-2015-3276)





 * Add RenegBufferSize option (#1214366)
 * Add support for TLS Session Tickets (RFC 5077)
 * Fix logical AND support in OpenSSL cipher compatibility
   (CVE-2015-3276)







Add compatibility for mod_ssl-style cipher definitions
2014-12-02T18:59:03+00:00

Rob Crittenden
rcritten@redhat.com

2014-11-12T16:48:23+00:00

2d1650900f4d47dc43400d826c0f7e1a7c5229b8

- Add Camelia ciphers
- Remove Fortezza ciphers
- Add TLSv1.2-specific ciphers

Resolves BZ: #862938





- Add Camelia ciphers
- Remove Fortezza ciphers
- Add TLSv1.2-specific ciphers

Resolves BZ: #862938