Displaying 6 results from an estimated 6 matches for "140sp".
Did you mean:
140s
2015 Dec 04
6
OpenSSH FIPS 140-2 support using OpenSSL FIPS modules?
...questions are:
1. Does OpenSSH support FIPS mode?
2. Or does OpenSSH support with OpenSSL FIPS modules?
3. Is there a way to re-compile OpenSSH by turning on/off some flags to
make it FIPS complaint?
4. Does the RedHat OpenSSH FIPS modules (
http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140sp/140sp1791.pdf)
also open sourced to the OpenSSH community?
Thanks.
2015 Dec 04
2
OpenSSH FIPS 140-2 support using OpenSSL FIPS modules?
...>
> On 12/04/2015 03:26 AM, security veteran wrote:
>
>> 3. Is there a way to re-compile OpenSSH by turning on/off some flags to
>> make it FIPS complaint?
>>
>> 4. Does the RedHat OpenSSH FIPS modules (
>> http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140sp/140sp1791.pdf)
>> also open sourced to the OpenSSH community?
>>
> Yes, what we ship in RHEL is open-source. You can pick up sources that are
> actually used in RHEL version in CentOS repository:
> https://git.centos.org/summary/?r=rpms/openssh
>
> So as said before, upst...
2007 Mar 01
2
OpenSSH use of OpenSSL in FIPS Mode
Now that OpenSSL has received FIPS 140-2 certification, does anyone know
if the work started a couple of years ago to allow OpenSSH to use
OpenSSL in FIPS mode will be reactivated?
Bill
2006 Jun 16
0
[Bug 1197] Enhancement request to enable fips compatibility mode in OpenSSH
http://bugzilla.mindrot.org/show_bug.cgi?id=1197
Summary: Enhancement request to enable fips compatibility mode in
OpenSSH
Product: Portable OpenSSH
Version: 4.3p2
Platform: All
URL: http://csrc.nist.gov/cryptval/140-1/140sp/140sp642.pdf
http://www.openssl.org/docs/fips/UserGuide-1.0.pdf
OS/Version: All
Status: NEW
Severity: enhancement
Priority: P2
Component: Build system
AssignedTo: bitbucket at mindrot.org
ReportedBy: senthilkumar_s...
2015 Dec 07
2
OpenSSH FIPS 140-2 support using OpenSSL FIPS modules?
...2. Or does OpenSSH support with OpenSSL FIPS modules?
>>
>> 3. Is there a way to re-compile OpenSSH by turning on/off some flags to
>> make it FIPS complaint?
>>
>> 4. Does the RedHat OpenSSH FIPS modules (
>> http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140sp/140sp1791.pdf)
>> also open sourced to the OpenSSH community?
>>
>> Redhat use different FIPS validation process for OpenSSL. You could
> extract fips patch from source package.
> Impact is not only for source code. Build process has to be updated as
> well. Red Hat is ba...
2012 Sep 18
8
Collecting entropy from device_attach() times.
Hi.
I experimented a bit with collecting entropy from the time it takes for
device_attach() to run (in CPU cycles). It seems that those times have
enough variation that we can use it for entropy harvesting. It happens
even before root is mounted, so pretty early.
On the machine I'm testing it, which has minimal kernel plus NIC driver
I see 75 device_attach() calls. I'm being very careful