Summary: | dev-db/mariadb: SSL/TLS downgrade | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Agostino Sarubbo <ago> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED DUPLICATE | ||
Severity: | normal | CC: | mysql-bugs |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://www.openwall.com/lists/oss-security/2015/04/29/4 | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
Agostino Sarubbo
2015-04-29 14:35:50 UTC
dev-db/mariadb-5.5.44 and 10.0.20 are now in the tree which take steps to improve ssl. 10.0.20 may be stabled if necessary, however a client program still must request a connection flag to require certificate verification (--ssl-verify-server-cert on mysql tools) else the connection may or may not be encrypted ( with just --ssl on mysql tools for example). Any client can verify SSL connections with a simple query and deal as they see fit: SHOW STATUS LIKE 'ssl_Cipher' *** This bug has been marked as a duplicate of bug 555480 *** |