FreeRDP

History

Brent Collins d98b88642b Add new command-line option to force xfreerdp into a fips compliant mode. This option will ensure that NLA is disabled(since NTLM uses weak crypto algorithms), FIPS encryption is enabled, and ensure fips mode is enabled for openssl. Selectively override specific uses of MD5/RC4 with new API calls specifically tailored to override FIPS. Add comments on why overriding the use of these algorithms under FIPS is acceptable for the locations where overrides happen. Remove check of server proprietary certificate which was already being ignore to avoid use of MD5. Initialize winpr openssl earlier to ensure fips mode is set before starting using any crypto algorithms.	2017-11-17 12:43:06 +01:00
..
freerdp	Add new command-line option to force xfreerdp into a fips compliant mode.	2017-11-17 12:43:06 +01:00
CMakeLists.txt	cleanup cmake exports and pkg-config files	2016-01-12 17:32:33 +01:00

Brent Collins d98b88642b Add new command-line option to force xfreerdp into a fips compliant mode.

This option will ensure that NLA is disabled(since NTLM uses weak crypto algorithms), FIPS
encryption is enabled, and ensure fips mode is enabled for openssl.

Selectively override specific uses of MD5/RC4 with new API calls specifically tailored to override FIPS.

Add comments on why overriding the use of these algorithms under FIPS is acceptable for the locations where overrides happen.

Remove check of server proprietary certificate which was already being ignore to avoid use of MD5.

Initialize winpr openssl earlier to ensure fips mode is set before starting using any crypto algorithms.

2017-11-17 12:43:06 +01:00

freerdp

Add new command-line option to force xfreerdp into a fips compliant mode.

2017-11-17 12:43:06 +01:00

CMakeLists.txt

cleanup cmake exports and pkg-config files

2016-01-12 17:32:33 +01:00