[dns-operations] SHA-1 DNSSEC verification broken in RHEL 9 and CentOS 9 Stream

Shreyas Zare shreyas at technitium.com
Thu Apr 14 06:00:55 UTC 2022

On 4/14/2022 11:22 AM, Mukund Sivaraman wrote:
> Petr's email seems limited to use of RSASHA-1 and NSEC3RSASHA1 as RRSIG
> algorithms, and possibly DS digest type.

Petr's email was about complete removal of SHA-1 support from RHEL 9.0. 
So, this should affect any software that tries to use SHA-1 for any purpose.

*Shreyas Zare*
Technitium <https://technitium.com/>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.dns-oarc.net/pipermail/dns-operations/attachments/20220414/bbe80540/attachment.html>

More information about the dns-operations mailing list