Lines 4-9
Link Here
|
4 |
|
4 |
|
5 |
Changes between 0.9.7g and 0.9.7h [XX xxx XXXX] |
5 |
Changes between 0.9.7g and 0.9.7h [XX xxx XXXX] |
6 |
|
6 |
|
|
|
7 |
*) Remove the functionality of SSL_OP_MSIE_SSLV2_RSA_PADDING |
8 |
(part of SSL_OP_ALL). This option used to disable the |
9 |
countermeasure against man-in-the-middle protocol-version |
10 |
rollback in the SSL 2.0 server implementation, which is a bad |
11 |
idea. |
12 |
|
13 |
[Bodo Moeller; problem pointed out by Yutaka Oiwa (Research Center |
14 |
for Information Security, National Institute of Advanced Industrial |
15 |
Science and Technology [AIST], Japan)] |
16 |
|
7 |
*) Minimal support for X9.31 signatures and PSS padding modes. This is |
17 |
*) Minimal support for X9.31 signatures and PSS padding modes. This is |
8 |
mainly for FIPS compliance and not fully integrated at this stage. |
18 |
mainly for FIPS compliance and not fully integrated at this stage. |
9 |
[Steve Henson] |
19 |
[Steve Henson] |
Lines 53-58
Link Here
|
53 |
|
63 |
|
54 |
Changes between 0.9.7f and 0.9.7g [11 Apr 2005] |
64 |
Changes between 0.9.7f and 0.9.7g [11 Apr 2005] |
55 |
|
65 |
|
|
|
66 |
[NB: OpenSSL 0.9.7h and later 0.9.7 patch levels were released after |
67 |
OpenSSL 0.9.8.] |
68 |
|
56 |
*) Fixes for newer kerberos headers. NB: the casts are needed because |
69 |
*) Fixes for newer kerberos headers. NB: the casts are needed because |
57 |
the 'length' field is signed on one version and unsigned on another |
70 |
the 'length' field is signed on one version and unsigned on another |
58 |
with no (?) obvious way to tell the difference, without these VC++ |
71 |
with no (?) obvious way to tell the difference, without these VC++ |