Fedora 33 Looking To Further Tighten Its Crypto Settings

Written by Michael Larabel in Fedora on 17 March 2020 at 03:50 AM EDT. 3 Comments
For the Fedora 33 release later this year, Red Hat is looking at further enhancing and strengthening the cryptography settings/configuration of the OS.

Red Hat's Tomáš Mráz has proposed further strengthening the crypto policies of the OS. Among the principle aspects of the proposal are:

- Disabling legacy protocols like TLS 1.0 and TLS 1.1.

- Disabling weak Diffie-Hellman key exchange sizes.

- Disabling use of SHA-1 hashes within signatures.

This is in part thanks to Fedora's relatively recent move of having a system-wide policy concerning crypto settings across packages to help fend off potentially weak cryptography from users.

More details on the planned Fedora 33 crypto settings changes via this Wiki page.
Related News
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week