--- - branch: MAIN date: Thu May 31 08:50:01 UTC 2012 files: - new: '1.58' old: '1.57' path: pkgsrc/security/p5-IO-Socket-SSL/Makefile pathrev: pkgsrc/security/p5-IO-Socket-SSL/Makefile@1.58 type: modified - new: '1.42' old: '1.41' path: pkgsrc/security/p5-IO-Socket-SSL/distinfo pathrev: pkgsrc/security/p5-IO-Socket-SSL/distinfo@1.42 type: modified id: 20120531T085001Z.419c39f763dac7056dab6b257800ba43a622e478 log: | Updating package for Perl module IO::Socket::SSL from CPAN in security/p5-IO-Socket-SSL from 1.66 to 1.74. Upstream changes: v1.74 2012.05.13 - accept a version of SSLv2/3 as SSLv23, because older documentation could be interpreted like this v1.73 2012.05.11 - make test t/dhe.t hopefully work for more version of openssl Thanks to paul[AT]city-fan[DOT]org for providing bug reports and testing environment v1.72 2012.05.10 - set DEFAULT_CIPHER_LIST to ALL:!LOW instead of HIGH:!LOW Thanks to dcostas[AT]gmail[DOT]com for problem report v1.71 2012.05.09 - 1.70 done right. Also don't disable SSLv2 ciphers, SSLv2 support is better disabled by the default SSL_version of 'SSLv23:!SSLv2' v1.70 2012.05.08 - make it possible to disable protols using SSL_version, make SSL_version default to 'SSLv23:!SSLv2' v1.69 2012.05.08 - re-added workaround in t/dhe.t v1.68 2012.05.07 - remove SSLv2 from default cipher list, which makes failed tests after last change work again, fix behvior for empty cipher list (use default) v1.67 2012.05.07 - https://rt.cpan.org/Ticket/Display.html?id=76929 thanks to d[DOT]thomas[AT]its[DOT]uq[DOT]edu[DOT]au for reporting - if no explicit cipher list is given it will now default to ALL:!LOW instead of the openssl default, which usually includes weak ciphers like DES. - new config key SSL_honor_cipher_order and documented how to use it to fight BEAST attack. module: pkgsrc subject: 'CVS commit: pkgsrc/security/p5-IO-Socket-SSL' unixtime: '1338454201' user: sno