Bugzilla will be upgraded to version 5.0 on a still to be determined date in the near future. The original upgrade date has been delayed.
Bug 1444937 - doc RFE: Release note for updated hash algorithm when generating certificates and public key fingerprints
doc RFE: Release note for updated hash algorithm when generating certificates...
Status: CLOSED CURRENTRELEASE
Product: Red Hat Enterprise Linux 7
Classification: Red Hat
Component: Red_Hat_Enterprise_Linux-Release_Notes-7-en-US (Show other bugs)
7.4
Unspecified Unspecified
unspecified Severity unspecified
: rc
: ---
Assigned To: Marc Muehlfeld
Marc Muehlfeld
: FutureFeature
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2017-04-24 11:00 EDT by Marc Muehlfeld
Modified: 2017-05-05 08:36 EDT (History)
5 users (show)

See Also:
Fixed In Version:
Doc Type: Enhancement
Doc Text:
IdM now generates SHA-256 certificate and public key fingerprints Previously, Identity Management (IdM) used the MD5 hash algorithm when generating fingerprints for certificates and public keys. To increase security, IdM now uses the SHA-256 algorithm in the mentioned scenario.
Story Points: ---
Clone Of:
Environment:
Last Closed: 2017-05-05 08:36:12 EDT
Type: Bug
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)

  None (edit)
Description Marc Muehlfeld 2017-04-24 11:00:09 EDT
While FIPS support was implemented in BZ#1125174, MD5 was replaced with SHA-256 for generating certificate and public key fingerprints.

However, this default was changed in IPA in general and not only if FIPS mode is enabled. For this reason, this should get an individual Release Note in 7.4.

Note You need to log in before you can comment on or make changes to this bug.