Skip to content

Packages should be signed with SHA256 as SHA1 is considered deprecated #4944

Closed
Closed
Packages should be signed with SHA256 as SHA1 is considered deprecated#4944
Labels
3rd Party ChangeSomething that Cacti can't fix directlyapiAPI related issuesbugUndesired behaviourpackagingPackaging as in Cacti TemplatesresolvedA fixed issue
Milestone
v1.2.23
@TheWitness

Description

@TheWitness
TheWitness
opened on Oct 7, 2022

Describe the bug

Just had a RHEL9 ticket where Cacti packages were not being installed. It turned out that Red Hat has deprecated SHA1. So, we should migrate packages to SHA256 in order to avoid confusion.

https://www.redhat.com/en/blog/rhel-security-sha-1-package-signatures-distrusted-rhel-9

The command to enable SHA1 is as follows:

update-crypto-policies --set DEFAULT:SHA1

As a workaround.

To Reproduce

Simply install Cacti and it's packages on RHEL9

Expected behavior

Cacti should work on RHEL9 out of the box.

Metadata

Metadata

Assignees

No one assigned

    Labels

    3rd Party ChangeSomething that Cacti can't fix directlyapiAPI related issuesbugUndesired behaviourpackagingPackaging as in Cacti TemplatesresolvedA fixed issue

    Type

    No type

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions