From a06c95d3b9bbefd6a4bf6c6561d6e32891f791f4 Mon Sep 17 00:00:00 2001 From: Rob Crittenden Date: Mon, 29 Feb 2016 17:41:39 -0500 Subject: Update ChangeLog: DHE ciphers, gencert, FIPS, permission, ciphers * Check for Apache user owner/group read permissions of NSS database * Update default ciphers to something more modern and secure * Fix test for DH cipher directive * Check for test and netstat before trying to use them * Don't ignore NSSProtocol when NSSFIPS is enabled Based on patch by Matthew Harmsen * Use proper shell syntax to avoid creating /0 * tests: Centralize the openssl ciphers flags when comparing * Basic test case for DHE cipher negotiation * Remove -DH from test strings, duplicate test, fix test * Add server support for DHE ciphers. --- ChangeLog | 28 ++++++++++++++++++++++++++++ 1 file changed, 28 insertions(+) diff --git a/ChangeLog b/ChangeLog index 146f06c..fba627d 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,3 +1,31 @@ +2016-02-29 Rob Crittenden + + * Fix test for DH cipher directive + * Check for test and netstat before trying to use them + * Don't ignore NSSProtocol when NSSFIPS is enabled + Based on patch by Matthew Harmsen + +2016-02-24 Rob Crittenden + + * Use proper shell syntax to avoid creating /0 + +2016-02-15 Rob Crittenden + + * tests: Centralize the openssl ciphers flags when comparing + +2016-02-10 Rob Crittenden + + * Basic test case for DHE cipher negotiation + +2016-02-09 Rob Crittenden + + * Remove -DH from test strings, duplicate test, fix test + +2016-02-08 Christian Heimes + * Add server support for DHE ciphers. + Similar patch was provided by Vitezslav Cizek + Heavily modified by Rob Crittenden + 2016-01-18 Rob Crittenden * Drop the check that NSSProxyNickname be required * Add basic reverse proxy test case -- cgit