Lines 4-9
Link Here
|
4 |
|
4 |
|
5 |
Changes between 0.9.8 and 0.9.8a [05 Jul 2005]] |
5 |
Changes between 0.9.8 and 0.9.8a [05 Jul 2005]] |
6 |
|
6 |
|
|
|
7 |
*) Remove the functionality of SSL_OP_MSIE_SSLV2_RSA_PADDING |
8 |
(part of SSL_OP_ALL). This option used to disable the |
9 |
countermeasure against man-in-the-middle protocol-version |
10 |
rollback in the SSL 2.0 server implementation, which is a bad |
11 |
idea. |
12 |
|
13 |
[Bodo Moeller; problem pointed out by Yutaka Oiwa (Research Center |
14 |
for Information Security, National Institute of Advanced Industrial |
15 |
Science and Technology [AIST], Japan)] |
16 |
|
7 |
*) Add libcrypto.pc and libssl.pc for those who feel they need them. |
17 |
*) Add libcrypto.pc and libssl.pc for those who feel they need them. |
8 |
[Richard Levitte] |
18 |
[Richard Levitte] |
9 |
|
19 |
|
Lines 850-855
Link Here
|
850 |
|
860 |
|
851 |
Changes between 0.9.7g and 0.9.7h [XX xxx XXXX] |
861 |
Changes between 0.9.7g and 0.9.7h [XX xxx XXXX] |
852 |
|
862 |
|
|
|
863 |
*) Remove the functionality of SSL_OP_MSIE_SSLV2_RSA_PADDING |
864 |
(part of SSL_OP_ALL). This option used to disable the |
865 |
countermeasure against man-in-the-middle protocol-version |
866 |
rollback in the SSL 2.0 server implementation, which is a bad |
867 |
idea. |
868 |
|
869 |
[Bodo Moeller; problem pointed out by Yutaka Oiwa (Research Center |
870 |
for Information Security, National Institute of Advanced Industrial |
871 |
Science and Technology [AIST], Japan)] |
872 |
|
853 |
*) Minimal support for X9.31 signatures and PSS padding modes. This is |
873 |
*) Minimal support for X9.31 signatures and PSS padding modes. This is |
854 |
mainly for FIPS compliance and not fully integrated at this stage. |
874 |
mainly for FIPS compliance and not fully integrated at this stage. |
855 |
[Steve Henson] |
875 |
[Steve Henson] |
Lines 899-904
Link Here
|
899 |
|
919 |
|
900 |
Changes between 0.9.7f and 0.9.7g [11 Apr 2005] |
920 |
Changes between 0.9.7f and 0.9.7g [11 Apr 2005] |
901 |
|
921 |
|
|
|
922 |
[NB: OpenSSL 0.9.7h and later 0.9.7 patch levels were released after |
923 |
OpenSSL 0.9.8.] |
924 |
|
902 |
*) Fixes for newer kerberos headers. NB: the casts are needed because |
925 |
*) Fixes for newer kerberos headers. NB: the casts are needed because |
903 |
the 'length' field is signed on one version and unsigned on another |
926 |
the 'length' field is signed on one version and unsigned on another |
904 |
with no (?) obvious way to tell the difference, without these VC++ |
927 |
with no (?) obvious way to tell the difference, without these VC++ |