I need to find out if gnutls library that I have installed supports TLS 1.2 or TLS 1.3. I kept looking online but there doesn't seem to be a correspondence between library version and protocol standard. So to provide more clarification, here is what I see
$ ls -lah /usr/lib/libgnutls.so
/usr/lib/libgnutls.so -> ibgnutls.so.30.22.0
From this I can see that my library is at version 30.22.0 (we can talk more about library versioning later if you want). What I can't figure out is what protocol version does this library support. Is it TLS 1.2 or TLS 1.3 or both? To find out what TLS source code version I have installed I downloaded a dev version of gnutls and looked into /usr/include/gnutls/gnutls.h. Found the following in there
#define GNUTLS_VERSION "3.6.4"
#define GNUTLS_VERSION_MAJOR 3
#define GNUTLS_VERSION_MINOR 6
#define GNUTLS_VERSION_PATCH 4
#define GNUTLS_VERSION_NUMBER 0x030604
So it looks like I'm using version 3.6.4 of the source code. I also kept digging online, but couldn't determine if this version support TLS 1.2, TLS 1.3 or both.
Any help with this is really appreciated.
From https://gnutls.org/news.html:
2018-09-24
Released GnuTLS 3.6.4 of the next branch with support for the final version of TLS1.3.
Thus, the version you have (3.6.4) should support TLS 1.3.
Related
when installing Zabbix v3.4 I get the following error message: http://imgur.com/a/xo3tg
Looks like an error in the yum repository. Do you have any suggestions for solutions or something similar?
Best regards
As you can see, there is just 2.2 version of Zabbix (agent, server, proxy, etc.) in that repository.
It seems Zabbix 2.2 (LTS) is the latest version supported by OpenSUSE using its repositories.
By the way, you can install older versions of Zabbix-agent (like 2.2) sending data correctly to newer server/proxy versions (like 3.0 or even 3.2).
I think the major item you will miss with using zabbix-agent older than 3.X is encryption. Other major features work very good.
We have a legacy system that runs on Coldfusion 6.1 with JVM 1.6.0 build 24. It appears that TLSv 1.1 was added in build 111. Is it possible to get Coldfusion 6.1 to work with that build (or higher) and what would I have to do?
TLS 1.1 is only supported in Java 1.8 on CF10 (Oddly 1.7 and above in CF11)
I dont think CF 6.1 will work properly on higher versions of JDK. You may want to try to upgrade it to 1.8 to see if that helps.
See this Adobe Blog as a starting guide to updating your Java: http://blogs.coldfusion.com/post.cfm/how-to-change-upgrade-jdk-version-of-coldfusion-server
Also see this: http://www.coldfusionmuse.com/index.cfm/2014/12/8/colfusion-jvm-versions-sslv3-tls
When I was going to install some package on my NAS via ipkg I found there are more than one versions such as:
root#Nas:/opt/etc/init.d# ipkg list | grep openssl
openssl - 0.9.8v-2 - Openssl provides the ssl implementation in libraries libcrypto and libssl, and is needed by many other applications and librari
openssl - 0.9.7m-6 - Openssl provides the ssl implementation in libraries libcrypto and libssl, and is needed by many other applications and librari
Due some dependency issue I need the version 0.9.7. However, if I just type ipkg install openssl it will always install the later, aka the 0.9.8, one.
Does anybody know how to specify the version to install?
This functionality was introduced in opkg 0.3.2, taken from the commit message:
If several versions of a package are available in a repo, opkg defaults
to the latest one. To force opkg to use a different version, the syntax
= is used. For example, in a repo that has
version 1.0, 2.0 and 3.0 of 'a', the following command will install
version 1.0:
opkg install a=1.0
The syntax is the same used by apt-get.
Here's the issue and 0.3.2's release notes
I'm writing an application that should be cross platform, so my idea is to write the full substrate in C then writing the user's interface related stuffs in Objective-C or other suitable language (i.e. C++ for linux).
For that application I have to use OpenSSL; as documented Apple dropped the support of this library since SDK 10.11; as I know OpenSSL should be available until SDK 10.10.
Now my question: I'd like to develop with XCode 7.3 but I'd like that my app should be also backward compatible with reasonably older version of OS X; my idea is that I have to install older SDK across the new XCode 7.3 then choose the right SDK to use under "Build settings" -> "Base SDK".
Can someone point me at a document describing how can I download and install older SDK on new XCode? On Apple Developer website I have found only older release of XCode but it will install a complete old release of XCode...
Thank you for your precious help.
Rather than building with an old SDK, you should build and link with OpenSSL yourself. From the documentation:
If your app depends on OpenSSL, you should compile OpenSSL yourself and statically link a known version of OpenSSL into your app.
The version of OpenSSL shipped with OS X is old and out of date, anyway. Apple dropped support for it precisely because they couldn't ship newer versions without breaking backwards compatibility (OpenSSL is not API stable between releases).
Greeting ,
I am enable to find out any method to implement SSL services with Qt 4.2.3 version .I am presently restricted to use 4.2.3 version , can't use 4.3 or later version . Please suggest me any way to come out from this problem .
There is a LGPLv2.1 licensed Qt add-on named QCA - Qt Cryptography Architecture. It supports SSL and TLS and other crypto-related technologies. It depends on Qt 4.2+ and is cross-platform in a typical Qt way.