Add PKCS 1.5 to blacklist.

author scantor <scantor@cb58f699-b61c-0410-a6fe-9272a202ed29>

Fri, 27 Jul 2012 20:31:49 +0000 (20:31 +0000)

committer scantor <scantor@cb58f699-b61c-0410-a6fe-9272a202ed29>

Fri, 27 Jul 2012 20:31:49 +0000 (20:31 +0000)
author scantor <scantor@cb58f699-b61c-0410-a6fe-9272a202ed29>
Fri, 27 Jul 2012 20:31:49 +0000 (20:31 +0000)
committer scantor <scantor@cb58f699-b61c-0410-a6fe-9272a202ed29>
Fri, 27 Jul 2012 20:31:49 +0000 (20:31 +0000)
diff --git a/configs/security-policy.xml b/configs/security-policy.xml

index fdaba43..4d9dfe7 100644 (file)
--- a/configs/security-policy.xml
+++ b/configs/security-policy.xml
@@ -29,8 +29,9 @@
      
      <!-- Disables known weak algorithms. -->
      <AlgorithmBlacklist>
-    http://www.w3.org/2001/04/xmldsig-more#md5
-    http://www.w3.org/2001/04/xmldsig-more#rsa-md5
+      http://www.w3.org/2001/04/xmldsig-more#md5
+      http://www.w3.org/2001/04/xmldsig-more#rsa-md5
+      http://www.w3.org/2001/04/xmlenc#rsa-1_5
      </AlgorithmBlacklist>
  
  </SecurityPolicies>
author	scantor <scantor@cb58f699-b61c-0410-a6fe-9272a202ed29>
	Fri, 27 Jul 2012 20:31:49 +0000 (20:31 +0000)
committer	scantor <scantor@cb58f699-b61c-0410-a6fe-9272a202ed29>
	Fri, 27 Jul 2012 20:31:49 +0000 (20:31 +0000)