From Fedora Project Wiki

(draft)
No edit summary
 
(10 intermediate revisions by 4 users not shown)
Line 1: Line 1:
{{header|docs}}{{Docs_beat_open}}
{{header|docs}}


== SSL 3.0 and RC4 Croptography ==
{{Docs_beat_closed}}
 
SSL 3.0 and RC4 are considered insecure and vulnerable to security attacks. As such, these two are disabled by default for all Fedora components that use the system-wide crypto policy.  This includes gnutls and openssl libraries, and all the applications based on them.
 
Applications or environments that require SSL 3.0 or RC4 can use [https://github.com/nmav/fedora-crypto-policies/blob/master/crypto-policies.8.txt update-crypto-policies] to  globally switch to the LEGACY policy to enable SSL 3.0 and RC4.
 
Note - All applications that use TLS  from NSS are not affected by this change.


[[Category:Docs Project]]
[[Category:Docs Project]]
[[Category:Draft documentation]]
[[Category:Draft documentation]]
[[Category:Documentation beats]]
[[Category:Documentation beats]]

Latest revision as of 01:33, 20 September 2016

DocsProject Header docTeam1.png


Warning.png
Beat Closed on Wiki
Work on beats has now moved to git at https://pagure.io/fedora-docs/release-notes. If you have changes or additions, please contact the docs team via #fedora-docs, docs@lists.fedoraproject.org, or with the release-notes BZ component.
Retrieved from "https://fedoraproject.org/w/index.php?title=Documentation_Security_Beat&oldid=474353"