search for: ccevs

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 In case you have been living in an underground security cave lately. (For the lazy ones, this was RHEL 5). http://www.computerworld.com.au/index.php/id;306842912;fp;4194304;fpid;1;pf;1 http://www.niap-ccevs.org/cc%2Dscheme/st/?vid=10125 - -- Rodrigo Barbosa "Quid quid Latine dictum sit, altum viditur" "Be excellent to each other ..." - Bill & Ted (Wyld Stallyns) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) iD8DBQFGdtIrpdyWzQ5b5ckRAmLYAJ9SzclZ4wKxA7aWkzie...

Hello everyone! I work for a company that uses OpenSSH to remotely support systems we've sold. Since some of our clients are US Dept. of Defense hospitals, our access to these servers needs to comply with a whole range of requirements and standards. At this point it's looking like the SSH daemon needs to be FIPS 140-2 compliant, and the only package that is certified is F-Secure.

I''ve just posted a feature request <http://projects.puppetlabs.com/issues/8120> relating to FIPS 140-2 compliance. I''m pointing to it here on the mailing list because I listed there five places where Puppet (nay, Ruby!) crashed while I was testing a deployment using FIPS mode on all hosts. It crashed because it tried to use MD5, and OpenSSL in FIPS mode doesn''t let