Permit null ciphers.

commit: 988788f697768524f1856d22abb8db340be646d5 [log] [tgz]
author: Ben Laurie <ben@openssl.org> Sat Mar 06 12:09:36 1999 +0000
committer: Ben Laurie <ben@openssl.org> Sat Mar 06 12:09:36 1999 +0000
tree: 772c6f36bfddd75a43112e0ab6389edb2c5a2166
parent: f9b2e53052b74ba1feb64d7abcb386d46024bcc7 [diff] [blame]
diff --git a/CHANGES b/CHANGES
index 81bd07e..e0622f6 100644
--- a/CHANGES
+++ b/CHANGES

@@ -5,6 +5,12 @@
 
  Changes between 0.9.1c and 0.9.2
 
+  *) Permit null encryption ciphersuites, used for authentication only. It used
+     to be necessary to set the preprocessor define SSL_ALLOW_ENULL to do this.
+     It is now necessary to set SSL_FORBID_ENULL to prevent the use of null
+     encryption.
+     [Ben Laurie]
+
   *) Add a bunch of fixes to the PKCS#7 stuff. It used to sometimes reorder
      signed attributes when verifying signatures (this would break them), 
      the detached data encoding was wrong and public keys obtained using
commit	988788f697768524f1856d22abb8db340be646d5	[log] [tgz]
author	Ben Laurie <ben@openssl.org>	Sat Mar 06 12:09:36 1999 +0000
committer	Ben Laurie <ben@openssl.org>	Sat Mar 06 12:09:36 1999 +0000
tree	772c6f36bfddd75a43112e0ab6389edb2c5a2166
parent	f9b2e53052b74ba1feb64d7abcb386d46024bcc7 [diff] [blame]