Project

Profile

Help

Issue #8317

closed

Allow the auth private key size to be configurable

Added by mprahl about 3 years ago. Updated about 3 years ago.

Status:
MODIFIED
Priority:
Normal
Assignee:
-
Category:
-
Sprint/Milestone:
-
Start date:
Due date:
Estimated time:
Severity:
2. Medium
Version:
Platform Release:
OS:
Triaged:
No
Groomed:
No
Sprint Candidate:
No
Tags:
Pulp 2
Sprint:
Quarter:

Description

Clients such as Fedora 33 have a default OpenSSL configuration that doesn't allow the usage of 1024 bit keys. To allow for backwards compatibility, allow this value to be configurable on the Pulp side.

See more information at: https://fedoraproject.org/wiki/Changes/StrongCryptoSettings2

Actions #1

Updated by mprahl about 3 years ago

The following PR should address this: https://github.com/pulp/pulp/pull/4018

Added by mprahl about 3 years ago

Revision d92c5424 | View on GitHub

Set the auth private key size to be 2048 bits

Clients such as Fedora 33 have a default OpenSSL configuration that doesn't allow the usage of 1024 bit keys.

See more information at: https://fedoraproject.org/wiki/Changes/StrongCryptoSettings2

closes #8317

Actions #2

Updated by mprahl about 3 years ago

  • Status changed from NEW to MODIFIED
Actions #3

Updated by ipanova@redhat.com about 3 years ago

  • Tags Pulp 2 added

Added by mprahl almost 3 years ago

Revision 308d1644 | View on GitHub

Sign authentication certificates using SHA256

Clients such as Fedora 33 have a default OpenSSL configuration that doesn't allow the usage of SHA1 signed certificates.

See more information at: https://fedoraproject.org/wiki/Changes/StrongCryptoSettings2

closes #8317

Also available in: Atom PDF