#6701 Add SHA256 fingerprints
Closed: fixed 7 years ago Opened 7 years ago by tkrizek.

There has been a practical collision attack on SHA1: https://shattered.io/

We should move away from SHA1 and promote SHA256 instead. SHA256 should be used in places where backwards compatibility is not needed (e.g. certificate fingerprints in ipa cert-* commands).


Metadata Update from @tkrizek:
- Issue assigned to tkrizek
- Issue set to the milestone: 0.0 NEEDS_TRIAGE

7 years ago

Metadata Update from @pvoborni:
- Custom field affects_doc reset
- Custom field tester adjusted to wanted
- Issue close_status updated to: None
- Issue set to the milestone: FreeIPA 4.5 (was: 0.0 NEEDS_TRIAGE)

7 years ago

master:

  • a06c71b Add SHA256 fingerprints for certs

Metadata Update from @tkrizek:
- Issue close_status updated to: fixed
- Issue status updated to: Closed (was: Open)

7 years ago

Login to comment on this ticket.

Metadata