LibreSSL 2.2.2 Released · Slashdot Mirror

Posted by samzenpus on Friday August 7, 2015 @01:59AM from the check-it-out dept.

An anonymous reader writes: LibreSSL 2.2.2 has been released. According to the release notes: "This release marks the end of the OpenBSD 5.8 development cycle, featuring expanded portable build support, code improvements, removal of obsolete workarounds....The LibreSSL project continues improvement of the codebase to reflect modern, safe programming practices. We welcome feedback and improvements from the broader community. Thanks to all of the contributors who helped make this release possible." This is the first LibreSSL release that has completely removed SSLv3 support.

1 of 33 comments (clear)

Min score:

Reason:

Sort:

Re:Is it FIPS certified? by Anonymous Coward · 2015-08-07 02:22 · Score: 3, Insightful

I'm no expert, but didn't LibreSSL remove support for some algorithms mandated by FIPS that are known to be insecure? I could be wrong, but I have the impression that it can't be certified because the standard itself is compromised.