enforcing a consistent crypto policy

Nikos Mavrogiannopoulos nmav at redhat.com
Thu Jan 16 13:03:14 UTC 2014

 I am working on a draft common crypto policy for Fedora. The idea is to
be able to set a security level for all TLS/SSL connections in a system
(which will of course allow the user to use any application-specific

The draft change is at:

and is not submitted yet as I'd appreciate any comments, suggestions for
improvement or any help in implementing it. The current policy is
restricted to TLS and SSL libraries to have a manageable work effort but
the idea is to convert gradually all crypto applications and libraries.


More information about the devel mailing list