Mercurial > p > roundup > code
comparison CHANGES.txt @ 6420:5d6b6e948e17
Upgrade SSL params for roundup-server
Params were still using md5, a key size of 768 and allowed SSL 2 and 3.
Now using sha512, key size of 2048 and TLS 1.1 or newer.
This still doesn't fix the use of SSL in roundup-server. It has
problems under both 2.7 and 3.x. Tickets in tracker opened for both,
| author | John Rouillard <rouilj@ieee.org> |
|---|---|
| date | Sun, 23 May 2021 17:41:23 -0400 |
| parents | 559b3d8e03d7 |
| children | 9c57f2814597 |
comparison
equal
deleted
inserted
replaced
| 6419:4d321d52d67d | 6420:5d6b6e948e17 |
|---|---|
| 108 link to open the editor. | 108 link to open the editor. |
| 109 - issue2551136 - timezone extention crash on Python 3.8. cgi.escape | 109 - issue2551136 - timezone extention crash on Python 3.8. cgi.escape |
| 110 is used in some template to provide a select box of timezones. It | 110 is used in some template to provide a select box of timezones. It |
| 111 uses cgi.escape that is depricated and removed from 3.8 and newer. | 111 uses cgi.escape that is depricated and removed from 3.8 and newer. |
| 112 Use html.escape with fallback to cgi.escape. (Cedric Krier) | 112 Use html.escape with fallback to cgi.escape. (Cedric Krier) |
| 113 - roundup-server can act as an SSL server. Usually SSL is provided by | |
| 114 a front-end server like nginx, hiawtha, apache. The SSL parameters | |
| 115 have been upgraded to TLS 1.1. Cert is RSA 2048 bytes with SHA512 | |
| 116 signature. Without these upgrades, ssl mode won't start. Note this | |
| 117 exposes other issue with roundup-server operating as an SSL | |
| 118 endpoint. See issue2551138 and issue2551137. | |
| 113 | 119 |
| 114 Features: | 120 Features: |
| 115 - issue2550522 - Add 'filter' command to command-line | 121 - issue2550522 - Add 'filter' command to command-line |
| 116 interface. Filter command was actually added in 2.0.0, but this | 122 interface. Filter command was actually added in 2.0.0, but this |
| 117 issue requested transitive searching. So that: | 123 issue requested transitive searching. So that: |