Is there any way to use Open SSL without any SHA1 hash functions and using one of SHA2 functions instead of it? I think firstly, I should find all the functions that call SHA1 algorithm, and I should understand why SHA1 is still used. While changing the hash function, the bits are different in SHA1 and SHA2 so it may cause some problems. It confuses me...
Asked
Active
Viewed 1,046 times
2 Answers
1
There is no cipher suite for the SHA2 family. Look at the man page for a list of all of them.
L̲̳o̲̳̳n̲̳̳g̲̳̳p̲̳o̲̳̳k̲̳̳e̲̳̳
- 12,464
- 4
- 50
- 55
-
@Hellnar: Ciphersuites are standardized by RFCs for SSL and TLS. TLS itself sends a constant binary number to represent the suite, which means the client and server would both have to be patched to use your suite you want. – L̲̳o̲̳̳n̲̳̳g̲̳̳p̲̳o̲̳̳k̲̳̳e̲̳̳ May 14 '10 at 23:49
0
According to Wikipedia, OpenSSL supports both SHA1 and SHA2 algorithms.
Robert Harvey
- 178,213
- 47
- 333
- 501
-
I know it supports both. But is there any function that uses SHA1 when we choose one of SHA2 algorithms or something different? Or is it exact that when we choose one of SHA2 functions it never uses SHA1 algorithm in anywhere? – Hellnar May 14 '10 at 23:37
-