From cf5770db64e40fff5f942dd3de9a2a708cb6d053 Mon Sep 17 00:00:00 2001 From: Paul Howarth Date: May 08 2012 11:30:01 +0000 Subject: Update to 1.69 - New upstream release 1.69 (changes for CPAN RT#76929) - If no explicit cipher list is given, default to ALL:!LOW instead of the openssl default, which usually includes weak ciphers like DES - New config key SSL_honor_cipher_order and document how to use it to fight BEAST attack - Fix behavior for empty cipher list (use default) - Re-added workaround in t/dhe.t --- diff --git a/perl-IO-Socket-SSL.spec b/perl-IO-Socket-SSL.spec index 94f5b08..a2fa467 100644 --- a/perl-IO-Socket-SSL.spec +++ b/perl-IO-Socket-SSL.spec @@ -1,5 +1,5 @@ Name: perl-IO-Socket-SSL -Version: 1.66 +Version: 1.69 Release: 1%{?dist} Summary: Perl library for transparent SSL Group: Development/Libraries @@ -54,6 +54,15 @@ rm -rf %{buildroot} %{_mandir}/man3/IO::Socket::SSL.3pm* %changelog +* Tue May 8 2012 Paul Howarth - 1.69-1 +- Update to 1.69 (changes for CPAN RT#76929) + - if no explicit cipher list is given, default to ALL:!LOW instead of the + openssl default, which usually includes weak ciphers like DES + - new config key SSL_honor_cipher_order and document how to use it to fight + BEAST attack + - fix behavior for empty cipher list (use default) + - re-added workaround in t/dhe.t + * Mon Apr 16 2012 Paul Howarth - 1.66-1 - Update to 1.66 - make it thread safer (CPAN RT#76538) @@ -66,7 +75,7 @@ rm -rf %{buildroot} - Update to 1.64 - ignore die from within eval to make tests more stable on Win32 (CPAN RT#76147) - - clarify some behavior regarding hostname verfication + - clarify some behavior regarding hostname verification - Drop patch for t/dhe.t, no longer needed * Wed Mar 28 2012 Paul Howarth - 1.62-1 diff --git a/sources b/sources index c57e02c..bb8f731 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -0f104165ff7da7f46aa8d9c10ac61bdf IO-Socket-SSL-1.66.tar.gz +49881073cca5a17ecb62aadb1b21af5b IO-Socket-SSL-1.69.tar.gz