=== modified file 'mandos'
--- mandos 2015-07-12 01:41:14 +0000
+++ mandos 2015-07-20 03:03:33 +0000
@@ -2397,7 +2397,7 @@
"debug": "False",
"priority":
"SECURE256:!CTYPE-X.509:+CTYPE-OPENPGP:!RSA"
- ":+SIGN-RSA-SHA224:+SIGN-RSA-RMD160",
+ ":+SIGN-DSA-SHA256",
"servicename": "Mandos",
"use_dbus": "True",
"use_ipv6": "True",
=== modified file 'mandos-options.xml'
--- mandos-options.xml 2015-03-10 18:03:38 +0000
+++ mandos-options.xml 2015-07-20 03:03:33 +0000
@@ -46,24 +46,11 @@
not run in debug mode.
-
+
GnuTLS priority string for the TLS handshake.
The default is SECURE256:!CTYPE-X.509:+CTYPE-OPENPGP:!RSA
- :+SIGN-RSA-SHA224:+SIGN-RSA-RMD160
.
- See gnutls_priority_init
- 3 for the syntax.
- Warning: changing this may make the
- TLS handshake fail, making server-client
- communication impossible. Changing this option may also make the
- network traffic decryptable by an attacker.
-
-
-
- GnuTLS priority string for the TLS handshake.
- The default is SECURE256:!CTYPE-X.509:+CTYPE-OPENPGP:!RSA
.
+ :+SIGN-DSA-SHA256.
See gnutls_priority_init
3 for the syntax.
=== modified file 'mandos.conf'
--- mandos.conf 2015-04-02 18:59:29 +0000
+++ mandos.conf 2015-07-20 03:03:33 +0000
@@ -23,7 +23,7 @@
;debug = False
# GnuTLS priority for the TLS handshake. See gnutls_priority_init(3).
-;priority = SECURE256:!CTYPE-X.509:+CTYPE-OPENPGP:!RSA:+SIGN-RSA-SHA224:+SIGN-RSA-RMD160
+;priority = SECURE256:!CTYPE-X.509:+CTYPE-OPENPGP:!RSA:+SIGN-DSA-SHA256
# Zeroconf service name. You need to change this if you for some
# reason want to run more than one server on the same *host*.
=== modified file 'mandos.conf.xml'
--- mandos.conf.xml 2015-04-02 18:59:29 +0000
+++ mandos.conf.xml 2015-07-20 03:03:33 +0000
@@ -3,7 +3,7 @@
"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [
/etc/mandos/mandos.conf">
-
+
%common;
]>
@@ -121,8 +121,7 @@
-
+
=== modified file 'mandos.xml'
--- mandos.xml 2015-01-25 00:02:51 +0000
+++ mandos.xml 2015-07-20 03:03:33 +0000
@@ -2,7 +2,7 @@
-
+
%common;
]>
@@ -236,8 +236,7 @@
-
+
=== modified file 'plugins.d/mandos-client.c'
--- plugins.d/mandos-client.c 2015-07-20 00:59:17 +0000
+++ plugins.d/mandos-client.c 2015-07-20 03:03:33 +0000
@@ -2288,9 +2288,10 @@
int main(int argc, char *argv[]){
mandos_context mc = { .server = NULL, .dh_bits = 0,
- .priority = "SECURE256:!CTYPE-X.509:"
- "+CTYPE-OPENPGP:!RSA", .current_server = NULL,
- .interfaces = NULL, .interfaces_size = 0 };
+ .priority = "SECURE256:!CTYPE-X.509"
+ ":+CTYPE-OPENPGP:!RSA:+SIGN-DSA-SHA256",
+ .current_server = NULL, .interfaces = NULL,
+ .interfaces_size = 0 };
AvahiSServiceBrowser *sb = NULL;
error_t ret_errno;
int ret;