Avoid usage of legacy algorithms on libssl-3.0+ #53
Commits on Jun 24, 2022
-
Avoid usage of legacy algorithms on libssl-3.0+
Single DES and MD4 are considered legacy algorithms in OpenSSL/libssl-3.0. They can be enabled by adjusting the openssl configuration file or by using the new provider concept of OpenSSL-3. Editing the configuration must be done by each use of rubyntlm, which is very inconvenient. The provider API is not yet supported by the ruby binding to OpenSSL. So it's better to avoid the legacy algorithms at all. The single DES algorithm can easily implemented by a two key 3-DES run. The md4 implementation is taken from here: https://gist.github.com/tprynn/5419da1a2ad8935c1fff And the rc4 implementation is taken from here and modified: https://github.com/caiges/Ruby-RC4/blob/082fce56ab707dc77442709357cf176f7b3b6f22/lib/rc4.rb Fixes WinRb#49
Commits on Jun 27, 2022
-
... which is the default on ubuntu-22.04. OpenSSL-3.0 has some limitations regarding outdated algorithms.
Commits on Jun 6, 2024
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.