Hi, Lukas! On Mar 19, Lukas Javorsky wrote:
The main functions that are important for us is the password hashing, certificate fingerprinting in mariadb-connector-c which uses SHA-1 or MD5
Neither password hashing nor certificate fingerprinting, as far as I can see, use MD5. Password hashing, indeed, uses SHA-1. It's still secure, as far as I know, but I understand that you're likely just need a checkbox "no SHA-1 inside". Please, create a feature request at jira.mariadb.org for that (use type=task, project=MDEV). Certificate fingerprinting in mariadb-connector-c also uses SHA-1. If think it might make sense to allow other digest algorithms too. Please, create a feature request at jira.mariadb.org (project=CONC). Regards, Sergei VP of MariaDB Server Engineering and security@mariadb.org