Welcome to Centmin Mod Community
Become a Member

OpenSSL OpenSSL 1.1.1 - draft / old CHACHA20-POLY1305

Discussion in 'CentOS, Redhat & Oracle Linux News' started by buik, Oct 6, 2018.

Tags:
  1. buik

    buik Well-Known Member

    1,114
    286
    83
    Apr 29, 2016
    Ratings:
    +835
    Local Time:
    4:22 AM
    Found this patch on the internet.
    To enable the draft / old CHACHA20-POLY1305 on OpenSSL 1.1.1.
    Perhaps interesting for OpenSSL users.

    hakasenyang/openssl-patch
     
    • Informative Informative x 1
  2. eva2000

    eva2000 Administrator Staff Member

    40,632
    9,019
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +13,886
    Local Time:
    12:22 PM
    Nginx 1.15.x
    MariaDB 5.5/10.x
    Yeah seen that patch but not sure how useful it is as clients/browsers should have moved to final chacha20 version and not drafts ?
     
  3. buik

    buik Well-Known Member

    1,114
    286
    83
    Apr 29, 2016
    Ratings:
    +835
    Local Time:
    4:22 AM
    51.5% of all Android users, uses an old version of the Android OS which is not compatible with new Chacha.
    The most used Android system is version 6 which is again old Chacha.

    It seems obvious to me that this is the reason that Cloudflare is still implementing old Chacha.

    The patch (although not formally tested by me) seems still very usable for website owners with a lot of old Android.
     
    • Informative Informative x 1
    style="display:inline-block;min-width:400px;max-width:970px;width:95%;height:90px" data-ad-client="ca-pub-6669518204467592" data-ad-slot="4024536743" data-ad-format="auto">
  4. eva2000

    eva2000 Administrator Staff Member

    40,632
    9,019
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +13,886
    Local Time:
    12:22 PM
    Nginx 1.15.x
    MariaDB 5.5/10.x
    sweet good to know :D