version 1.15, 2015/08/06 11:23:31 |
version 1.16, 2015/08/06 12:04:39 |
|
|
</ul> |
</ul> |
<li>New/changed features: |
<li>New/changed features: |
<ul> |
<ul> |
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh_config&sektion=5">ssh_config(5)</a> |
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh_config&sektion=5">ssh_config(5)</a>: |
add <tt>PubkeyAcceptedKeyTypes</tt> option to control which public |
add <tt>PubkeyAcceptedKeyTypes</tt> option to control which public |
key types are available for user authentication. |
key types are available for user authentication. |
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sshd_config&sektion=5">sshd_config(5)</a>: |
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sshd_config&sektion=5">sshd_config(5)</a>: |
|
|
<li>Modified <tt>tls_write</tt> in <tt>libtls</tt> to allow partial |
<li>Modified <tt>tls_write</tt> in <tt>libtls</tt> to allow partial |
writes, clarified with examples in the documentation. |
writes, clarified with examples in the documentation. |
<li>Removed RSAX engine. |
<li>Removed RSAX engine. |
|
<li>Tested SSLv3 removal with the OpenBSD ports tree and found several |
|
applications that were not ready to build without SSLv3 yet. |
|
For now, building a program that intentionally uses SSLv3 will |
|
result in a linker warning. |
<li>Added <tt>TLS_method</tt>, <tt>TLS_client_method</tt> and |
<li>Added <tt>TLS_method</tt>, <tt>TLS_client_method</tt> and |
<tt>TLS_server_method</tt> as a replacement for the |
<tt>TLS_server_method</tt> as a replacement for the |
<tt>SSLv23_*method</tt> calls. |
<tt>SSLv23_*method</tt> calls. |
|
|
be bumped for each portable release. |
be bumped for each portable release. |
<li>Removed workarounds for TLS client padding bugs. |
<li>Removed workarounds for TLS client padding bugs. |
<li>Removed IE 6 SSLv3 workarounds. |
<li>Removed IE 6 SSLv3 workarounds. |
<li>Tested SSLv3 removal with the OpenBSD ports tree and found several |
|
applications that were not ready to build without SSLv3 yet. |
|
For now, building a program that intentionally uses SSLv3 will |
|
result in a linker warning. |
|
<li><tt>--with-enginesdir</tt> is removed as a configuration parameter. |
<li><tt>--with-enginesdir</tt> is removed as a configuration parameter. |
</ul> |
</ul> |
</ul> |
</ul> |