Fedora 33 Looking To Further Tighten Its Crypto Settings

Written by Michael Larabel in Fedora on 17 March 2020 at 03:50 AM EDT. 3 Comments
FEDORA
For the Fedora 33 release later this year, Red Hat is looking at further enhancing and strengthening the cryptography settings/configuration of the OS.

Red Hat's Tomáš Mráz has proposed further strengthening the crypto policies of the OS. Among the principle aspects of the proposal are:

- Disabling legacy protocols like TLS 1.0 and TLS 1.1.

- Disabling weak Diffie-Hellman key exchange sizes.

- Disabling use of SHA-1 hashes within signatures.

This is in part thanks to Fedora's relatively recent move of having a system-wide policy concerning crypto settings across packages to help fend off potentially weak cryptography from users.

More details on the planned Fedora 33 crypto settings changes via this Wiki page.
3 Comments
Related News
Fedora 42 Looking To Package Intel SGX Software Stack
Fedora 42 Aims To Enhance The Windows Subsystem For Linux Experience
Fedora Stakeholders Debate Concerns Over "Karma" Term For Their Updates System
Fedora KDE Desktop Spin Promoted To Same Tier As GNOME-Based Fedora Workstation
Fedora Stakeholders Debate Idea Of "-O3" Optimized Packages
Fedora 41 Releases Today With Many Shiny New Features
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
OpenWrt Affected By Security Issue That Could Have Led To Compromised Build Artifacts
Linus Torvalds Comes Out Against "Completely Broken" x86_64 Feature Levels
Linux EFI Zboot Abandoning "Compression Library Museum", Focusing On Gzip & Zstd
COSMIC Alpha 4 Released For System76's Rust-Based Desktop
Rustls Multi-Threaded Performance Is Battering OpenSSL
Fedora 42 Aims To Enhance The Windows Subsystem For Linux Experience
KDE Starts December By Landing A Number Of New Features
Linux 6.12 Officially Promoted To Being An LTS Kernel