[openssl-users] Workaround for "SSL_CTX_use_certificate:ca md too weak"

Salz, Rich rsalz at akamai.com
Wed Apr 4 17:51:27 UTC 2018

You need to change your server config (however it is done), so that it gets @SECLEVEL=0 into the cipher string.  See the ciphers manpage for description of security levels.

You can also edit openssl source and rebuild/relink, but that shouldn’t be necessary.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20180404/99eeee78/attachment.html>

More information about the openssl-users mailing list