On Saturday, March 11, 2023 at 3:00:59 PM UTC+1 [email protected] wrote:
I digged a bit deeper on this and here is my analysis result and suggestion: 1. I understand SVN & TortoiseSVN work with P12-formatted certificates only. 2. This format is supported by OpenSSL only, if the "legacy" provider is activated. Easy to proof that reproducible on Linux: Install openssl 3.x and without activating the legacy-provider it won't support P12 (aka PFX) certificates. The "legacy" profider needs to be activated in openssl.cfn. not quite correct. p12 is supported, but old/deprecated/insecure ciphers are not anymore. So if you created your p12 file with such an old cipher, then it won't work anymore. Also, TSVN is still built with OpenSSL 1.1.1. All you have to do is get a new certificate for your server that uses a recent cipher. And honestly, if you have a certificate on your server that's not supported by TSVN, then you should update it anyway, not just because of TSVN but because the encryption used isn't secure anymore. -- You received this message because you are subscribed to the Google Groups "TortoiseSVN" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/tortoisesvn/525358b1-990e-476c-ad53-95c09cf6fe10n%40googlegroups.com.
