EFW Support

Support => EFW SMTP, HTTP, SIP, FTP Proxy Support => Topic started by: jurota on Friday 03 February 2017, 12:32:44 am



Title: Proxy https generate SHA1 certs
Post by: jurota on Friday 03 February 2017, 12:32:44 am
Hello.
Proxy https generates SHA1 certificates and this is not valid since Januray 2017. żAny solution?
Thanks in advance


Title: Re: Proxy https generate SHA1 certs
Post by: jurota on Friday 03 February 2017, 02:15:24 am
Hello.
Proxy https generates SHA1 certificates and this is not valid since Januray 2017. żAny solution?
Thanks in advance

OK the problem seems to be that endian community (ver 3.2.2) uses openssl 1.0.1 and by default this version uses SHA1 if not specified otherwise. They would need to upgrade to version 1.0.2 that uses SHA256 by default.
I think you can not do anything until you upgrade.


Title: Re: Proxy https generate SHA1 certs
Post by: Dark-Vex on Monday 06 February 2017, 07:42:48 pm
Hi, there is already a bug on the Endian bug tracker for this jira.endian.com/browse/UTM-1544


Title: Re: Proxy https generate SHA1 certs
Post by: jurota on Monday 27 February 2017, 11:36:42 pm
The problem is the same, the version of squid is 3.4.14 and it would need 3.5 to solve it