How do I change the default message digest in openssl 1.1.0
EDIT:
I have a file that was encrypted with openssl 1.0.1g. When it was encrypted, the default_md
was md5. How can I set openssl 1.1.0 to use default_md
to md5 when executing commands in user mode?
using /etc/ssl/openssl.cnf
:
There is a default_md
parameter under the [ CA_default ]
section, and I don't want to modify that. I found a stackexchange post where someone suggested adding default_md = md5
under the [ req ]
section, but that hasn't worked. Is there another section that I have to add the config to to use md5 Message Digest in user mode?
TL;DR: How do I change the default message digest to MD5 in openssl 1.1.0? There is a parameter for it: default_md
, but seems to be ignored when set.
Original Question:
I have a proprietary encryption tool that was compiled on Ubuntu 14 using OpenSSL 1.0.1g that no longer works on Ubuntu 18. Seeing as I can't just recompile this proprietary tool, I need to enabled whatever Ubuntu 14 (openssl 1.0.1g) was using in Ubuntu 18 (openssl 1.1.0g). It has something to do with the digest envelop, which has changed from MD5 to SHA256.
I found an option in /etc/ssl/openssl.cnf under the [ req ] section called default_md. I set the value to
default_md = md5
but that doesn't seem to work. I also added a wrapper script to my path that passes in the -md5
parameter to openssl, but the digest still isn't recognized.
ssh password encryption ssl
New contributor
add a comment |
EDIT:
I have a file that was encrypted with openssl 1.0.1g. When it was encrypted, the default_md
was md5. How can I set openssl 1.1.0 to use default_md
to md5 when executing commands in user mode?
using /etc/ssl/openssl.cnf
:
There is a default_md
parameter under the [ CA_default ]
section, and I don't want to modify that. I found a stackexchange post where someone suggested adding default_md = md5
under the [ req ]
section, but that hasn't worked. Is there another section that I have to add the config to to use md5 Message Digest in user mode?
TL;DR: How do I change the default message digest to MD5 in openssl 1.1.0? There is a parameter for it: default_md
, but seems to be ignored when set.
Original Question:
I have a proprietary encryption tool that was compiled on Ubuntu 14 using OpenSSL 1.0.1g that no longer works on Ubuntu 18. Seeing as I can't just recompile this proprietary tool, I need to enabled whatever Ubuntu 14 (openssl 1.0.1g) was using in Ubuntu 18 (openssl 1.1.0g). It has something to do with the digest envelop, which has changed from MD5 to SHA256.
I found an option in /etc/ssl/openssl.cnf under the [ req ] section called default_md. I set the value to
default_md = md5
but that doesn't seem to work. I also added a wrapper script to my path that passes in the -md5
parameter to openssl, but the digest still isn't recognized.
ssh password encryption ssl
New contributor
1
More research suggests that it's a problem with openssl 1.1.0 not being backward compatible to 1.0.1.
– The Masked Crusader
Jan 2 at 23:02
I tried to change default_md to "md5" in my /etc/ssl/openssl.cnf file, but that didn't do anything.
– The Masked Crusader
Jan 2 at 23:32
add a comment |
EDIT:
I have a file that was encrypted with openssl 1.0.1g. When it was encrypted, the default_md
was md5. How can I set openssl 1.1.0 to use default_md
to md5 when executing commands in user mode?
using /etc/ssl/openssl.cnf
:
There is a default_md
parameter under the [ CA_default ]
section, and I don't want to modify that. I found a stackexchange post where someone suggested adding default_md = md5
under the [ req ]
section, but that hasn't worked. Is there another section that I have to add the config to to use md5 Message Digest in user mode?
TL;DR: How do I change the default message digest to MD5 in openssl 1.1.0? There is a parameter for it: default_md
, but seems to be ignored when set.
Original Question:
I have a proprietary encryption tool that was compiled on Ubuntu 14 using OpenSSL 1.0.1g that no longer works on Ubuntu 18. Seeing as I can't just recompile this proprietary tool, I need to enabled whatever Ubuntu 14 (openssl 1.0.1g) was using in Ubuntu 18 (openssl 1.1.0g). It has something to do with the digest envelop, which has changed from MD5 to SHA256.
I found an option in /etc/ssl/openssl.cnf under the [ req ] section called default_md. I set the value to
default_md = md5
but that doesn't seem to work. I also added a wrapper script to my path that passes in the -md5
parameter to openssl, but the digest still isn't recognized.
ssh password encryption ssl
New contributor
EDIT:
I have a file that was encrypted with openssl 1.0.1g. When it was encrypted, the default_md
was md5. How can I set openssl 1.1.0 to use default_md
to md5 when executing commands in user mode?
using /etc/ssl/openssl.cnf
:
There is a default_md
parameter under the [ CA_default ]
section, and I don't want to modify that. I found a stackexchange post where someone suggested adding default_md = md5
under the [ req ]
section, but that hasn't worked. Is there another section that I have to add the config to to use md5 Message Digest in user mode?
TL;DR: How do I change the default message digest to MD5 in openssl 1.1.0? There is a parameter for it: default_md
, but seems to be ignored when set.
Original Question:
I have a proprietary encryption tool that was compiled on Ubuntu 14 using OpenSSL 1.0.1g that no longer works on Ubuntu 18. Seeing as I can't just recompile this proprietary tool, I need to enabled whatever Ubuntu 14 (openssl 1.0.1g) was using in Ubuntu 18 (openssl 1.1.0g). It has something to do with the digest envelop, which has changed from MD5 to SHA256.
I found an option in /etc/ssl/openssl.cnf under the [ req ] section called default_md. I set the value to
default_md = md5
but that doesn't seem to work. I also added a wrapper script to my path that passes in the -md5
parameter to openssl, but the digest still isn't recognized.
ssh password encryption ssl
ssh password encryption ssl
New contributor
New contributor
edited Jan 3 at 18:28
New contributor
asked Jan 2 at 23:01
The Masked Crusader
12
12
New contributor
New contributor
1
More research suggests that it's a problem with openssl 1.1.0 not being backward compatible to 1.0.1.
– The Masked Crusader
Jan 2 at 23:02
I tried to change default_md to "md5" in my /etc/ssl/openssl.cnf file, but that didn't do anything.
– The Masked Crusader
Jan 2 at 23:32
add a comment |
1
More research suggests that it's a problem with openssl 1.1.0 not being backward compatible to 1.0.1.
– The Masked Crusader
Jan 2 at 23:02
I tried to change default_md to "md5" in my /etc/ssl/openssl.cnf file, but that didn't do anything.
– The Masked Crusader
Jan 2 at 23:32
1
1
More research suggests that it's a problem with openssl 1.1.0 not being backward compatible to 1.0.1.
– The Masked Crusader
Jan 2 at 23:02
More research suggests that it's a problem with openssl 1.1.0 not being backward compatible to 1.0.1.
– The Masked Crusader
Jan 2 at 23:02
I tried to change default_md to "md5" in my /etc/ssl/openssl.cnf file, but that didn't do anything.
– The Masked Crusader
Jan 2 at 23:32
I tried to change default_md to "md5" in my /etc/ssl/openssl.cnf file, but that didn't do anything.
– The Masked Crusader
Jan 2 at 23:32
add a comment |
0
active
oldest
votes
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "89"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
The Masked Crusader is a new contributor. Be nice, and check out our Code of Conduct.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f1106414%2fhow-do-i-change-the-default-message-digest-in-openssl-1-1-0%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
0
active
oldest
votes
0
active
oldest
votes
active
oldest
votes
active
oldest
votes
The Masked Crusader is a new contributor. Be nice, and check out our Code of Conduct.
The Masked Crusader is a new contributor. Be nice, and check out our Code of Conduct.
The Masked Crusader is a new contributor. Be nice, and check out our Code of Conduct.
The Masked Crusader is a new contributor. Be nice, and check out our Code of Conduct.
Thanks for contributing an answer to Ask Ubuntu!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Some of your past answers have not been well-received, and you're in danger of being blocked from answering.
Please pay close attention to the following guidance:
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f1106414%2fhow-do-i-change-the-default-message-digest-in-openssl-1-1-0%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
1
More research suggests that it's a problem with openssl 1.1.0 not being backward compatible to 1.0.1.
– The Masked Crusader
Jan 2 at 23:02
I tried to change default_md to "md5" in my /etc/ssl/openssl.cnf file, but that didn't do anything.
– The Masked Crusader
Jan 2 at 23:32