[openssl-commits] [web] master update
Rich Salz
rsalz at openssl.org
Mon Jun 26 16:48:23 UTC 2017
The branch master has been updated
via ec12b0751322d7a13e01bd67a0b788bbd3f6d4f4 (commit)
from 176cc4f8fad89bc8148ea23def35036daf5070f4 (commit)
- Log -----------------------------------------------------------------
commit ec12b0751322d7a13e01bd67a0b788bbd3f6d4f4
Author: Rich Salz <rsalz at akamai.com>
Date: Mon Jun 26 12:48:14 2017 -0400
Add digest-change comment
-----------------------------------------------------------------------
Summary of changes:
docs/faq-2-user.txt | 8 ++++++++
1 file changed, 8 insertions(+)
diff --git a/docs/faq-2-user.txt b/docs/faq-2-user.txt
index 896da42..682ec7f 100644
--- a/docs/faq-2-user.txt
+++ b/docs/faq-2-user.txt
@@ -62,6 +62,14 @@ is that no default filename is known because neither RANDFILE
nor HOME is set. (Versions up to 0.9.6 used file ".rnd" in the
current directory in this case, but this has changed with 0.9.6a.)
+* Why do I get errors when trying to decrypt 1.0.2 data with 1.1.0?
+
+A message digest is used to create the encrypt/decrypt key from
+a human-entered passphrase. In OpenSSL 1.1.0 we changed from MD5 to
+SHA-256. We did this as part of an overall change to move away from
+the now-insecure and broken MD5 algorithm. If you have old files,
+use the "-md md5" flag to decrypt them.
+
* How do I create certificates or certificate requests?
Check out the CA.pl(1) manual page. This provides a simple wrapper round
More information about the openssl-commits
mailing list