|
Lines 4-9
Link Here
|
| 4 |
|
4 |
|
| 5 |
Changes between 0.9.7g and 0.9.7h [XX xxx XXXX] |
5 |
Changes between 0.9.7g and 0.9.7h [XX xxx XXXX] |
| 6 |
|
6 |
|
|
|
7 |
*) Remove the functionality of SSL_OP_MSIE_SSLV2_RSA_PADDING |
| 8 |
(part of SSL_OP_ALL). This option used to disable the |
| 9 |
countermeasure against man-in-the-middle protocol-version |
| 10 |
rollback in the SSL 2.0 server implementation, which is a bad |
| 11 |
idea. |
| 12 |
|
| 13 |
[Bodo Moeller; problem pointed out by Yutaka Oiwa (Research Center |
| 14 |
for Information Security, National Institute of Advanced Industrial |
| 15 |
Science and Technology [AIST], Japan)] |
| 16 |
|
| 7 |
*) Minimal support for X9.31 signatures and PSS padding modes. This is |
17 |
*) Minimal support for X9.31 signatures and PSS padding modes. This is |
| 8 |
mainly for FIPS compliance and not fully integrated at this stage. |
18 |
mainly for FIPS compliance and not fully integrated at this stage. |
| 9 |
[Steve Henson] |
19 |
[Steve Henson] |
|
Lines 53-58
Link Here
|
| 53 |
|
63 |
|
| 54 |
Changes between 0.9.7f and 0.9.7g [11 Apr 2005] |
64 |
Changes between 0.9.7f and 0.9.7g [11 Apr 2005] |
| 55 |
|
65 |
|
|
|
66 |
[NB: OpenSSL 0.9.7h and later 0.9.7 patch levels were released after |
| 67 |
OpenSSL 0.9.8.] |
| 68 |
|
| 56 |
*) Fixes for newer kerberos headers. NB: the casts are needed because |
69 |
*) Fixes for newer kerberos headers. NB: the casts are needed because |
| 57 |
the 'length' field is signed on one version and unsigned on another |
70 |
the 'length' field is signed on one version and unsigned on another |
| 58 |
with no (?) obvious way to tell the difference, without these VC++ |
71 |
with no (?) obvious way to tell the difference, without these VC++ |
