From 8ed804d9d2c587a9c8e925209619d7dc84e63423 Mon Sep 17 00:00:00 2001 From: Chris Wilson Date: Sun, 2 Jun 2019 21:51:27 +0100 Subject: [PATCH] Minimal fix for Debian bug 907135 [#36] Unfortunately, the changes required to implement the full solution to Debian bug 907135 were quite large and could not be reviewed in time for Debian 10's release date. This would have meant that Box Backup was not available at all in Debian 10. Therefore we have developed a workaround specifically for Debian 10 users (this patch), which contains only the minimal changes needed to: * reduce the security level for Box Backup to 1 (the previous default), * overriding the system default; ensure that all newly generated certificates * meet the new security requirements that will later be imposed. This interim version will hopefully be replaced by a version from the master branch that supports the SSLSecurityLevel configuration option, which we hope to see in debian-backports as soon as possible, and we recommend that anyone using the interim version upgrade to this master version as soon as possible. See https://github.com/boxbackup/boxbackup/wiki/WeakSSLCertificates#workaround-2 for more details. Gbp-Pq: Name openssl1.1.patch --- test/basicserver/testfiles/seclevel2-sha256/ca/roots/clientCA.srl | 1 + 1 file changed, 1 insertion(+) create mode 100644 test/basicserver/testfiles/seclevel2-sha256/ca/roots/clientCA.srl (limited to 'test/basicserver/testfiles/seclevel2-sha256/ca/roots/clientCA.srl') diff --git a/test/basicserver/testfiles/seclevel2-sha256/ca/roots/clientCA.srl b/test/basicserver/testfiles/seclevel2-sha256/ca/roots/clientCA.srl new file mode 100644 index 00000000..8a0f05e1 --- /dev/null +++ b/test/basicserver/testfiles/seclevel2-sha256/ca/roots/clientCA.srl @@ -0,0 +1 @@ +01 -- cgit v1.2.3