Migrate new installs and upgrades of client and server packages to use SSL v3 or TLS
Registered by
Scott Kitterman
Many currently installed mail clients (and presumably other SSL users) still use SSL v2 be default. SSL v2 is at best cryptographically suspect. For an LTS release, configs should be pushed to SSLv3 or TLS. The goal is to minimize use of SSL v2 in standard/supported LTS configurations.
This blueprint will require a survey of SSL/TLS using packages in the distro and identifying both new install and upgrade configurations.
Blueprint information
- Status:
- Complete
- Approver:
- Rick Clark
- Priority:
- Low
- Drafter:
- Ante Karamatić
- Direction:
- Approved
- Assignee:
- Ante Karamatić
- Definition:
- Approved
- Series goal:
- Accepted for intrepid
- Implementation:
- Implemented
- Milestone target:
- intrepid-alpha-2
- Started by
- Ante Karamatić
- Completed by
- Ante Karamatić
Related branches
Related bugs
Sprints
Whiteboard
dendrobates: This should already be done. So, let's get to work.
ivoks: Implemented in intrepid.
(?)