[Bug 745588] New: Update intermediate certificates to use SHA2 hash

From: "sysadmin" (GNOME Bugzilla) <bugzilla gnome org>
To: gnome-infrastructure gnome org
Subject: [Bug 745588] New: Update intermediate certificates to use SHA2 hash
Date: Wed, 04 Mar 2015 10:11:05 +0000

Bug ID	745588
Summary	Update intermediate certificates to use SHA2 hash
Classification	Infrastructure
Product	sysadmin
Version	unspecified
OS	All
Status	NEW
Severity	normal
Priority	Normal
Component	Other
Assignee	sysadmin-maint@gnome.bugs
Reporter	bugzilla-gnome@vitters.nl
QA Contact	sysadmin-maint@gnome.bugs
GNOME version	---

https://community.qualys.com/blogs/securitylabs/2014/09/09/sha1-deprecation-what-you-need-to-know

The current *.gnome.org certificates makes use of SHA1 for:
- the actual certificate
- the intermediate certificates

I think we should start replacing the intermediate certificates:
https://www.startssl.com/certs/
https://www.startssl.com/certs/class2/sha2/ (seems like it)

We're pretty good according to SSLLabs, just need to fix the hash:
https://www.ssllabs.com/ssltest/analyze.html?d=bugzilla.gnome.org

You are receiving this mail because:

You are watching the QA Contact of the bug.
You are watching the assignee of the bug.

Follow-Ups:
- [Bug 745588] Update intermediate certificates to use SHA2 hash
  - From: sysadmin
- [Bug 745588] Update intermediate certificates to use SHA2 hash
  - From: sysadmin
- [Bug 745588] Update intermediate certificates to use SHA2 hash
  - From: sysadmin
- [Bug 745588] Update intermediate certificates to use SHA2 hash
  - From: sysadmin
- [Bug 745588] Update intermediate certificates to use SHA2 hash
  - From: sysadmin
- [Bug 745588] Update intermediate certificates to use SHA2 hash
  - From: sysadmin

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]