aboutsummaryrefslogtreecommitdiffstats
path: root/news.rst
Commit message (Collapse)AuthorAgeFilesLines
* Add SHAKE-128 and SHAKE-256 as hash functionsJack Lloyd2016-11-101-0/+3
|
* Fix version number typoJack Lloyd2016-11-091-1/+1
| | | | [ci skip]
* Fix Sphinx formatting errorsJack Lloyd2016-11-061-6/+5
| | | | [ci skip]
* Tweak readme textsJack Lloyd2016-11-051-0/+5
| | | | [ci skip]
* Update release notesJack Lloyd2016-11-041-0/+25
| | | | [ci skip]
* Rename zero_mem to secure_scrub_memoryJack Lloyd2016-11-031-1/+6
|
* Deprecate LibraryInitializerJack Lloyd2016-11-031-0/+3
| | | | | Now that #668 is landed I'm comfortable that we will not need any type of global init.
* Merge GH #360 Extend configure to output bakefilesJack Lloyd2016-11-021-0/+3
|\
| * Update release notesDaniel Neus2016-11-021-0/+3
| | | | | | | | [ci-skip]
* | Change TLS default policy to disable DSA, CCM-8, and static RSAJack Lloyd2016-11-021-0/+15
|/ | | | | | | | | | | | | | | Disables static RSA by default. The advantage here is twofold: enforcing forward security and protecting TLS servers from oracle attacks since by default they will never negotiate a suite which forces them to act as a decryption oracle. Some applications/users may be forced to enable RSA in order to speak with old or misconfigured peers, but these can be the exception not the default. Disable DSA and CCM-8 by default: if you need to enable these things, you know it. Adds TLS policy hooks to enforce DSA key sizes, default 2048 bits. Remove an incorrect warning about DTLS in the manual; the sequence number window check prevents this scenario from occuring.
* Update 1.11.34 release notesJack Lloyd2016-10-311-0/+14
|
* Move license and news to top level directoryJack Lloyd2016-10-311-0/+4165
These files are important so make them easy to find for someone unpacking the tarball for the first time.