[Info-vax] OpenSSL CSWS-2.2-1
doug80638 at aol.com
doug80638 at aol.com
Mon Apr 29 11:24:13 EDT 2019
Given the original topic for this thread being "OpenSSL CSWS-2.2-1" and seeing the concerns about keeping up-to-date with OpenSSL and Apache, I thought I'd throw in my $.02 to let you know what VSI is doing.
VSI continues to keep both OpenSSL and Apache up-to-date and is working on advancing support for many open source offering with a team dedicated to that effort.
SSL1 Update R has been released (OpenSSL 1.0.2r).
OpenSSL 1.1.1(b) kits have been developed and will be released soon (TLS V1.3 support). The product name will likely be SSL111 and maintain the same install structure as SSL1 (separate directory trees for co-existence).
CSWS will be released built against SSL111 and include TLS V1.3 support in the near future. Current support level is TLS V1.2.
There is also an LDAP client update (V3) that allows the caller to specify which TLS version to restrict connections to as an alternative to the current handshake negotiations from TLSV1.2 down to as low as SSLV3.
Plans are also in place to follow the OpenSSL V3.0 release when it becomes available. (SSL3?)
Hope this helps.
Doug.
More information about the Info-vax
mailing list