Hacker News new | ask | show | jobs
by syn0byte 2571 days ago
They actively removed and refuse FIPS mode as policy.

https://marc.info/?l=openbsd-misc&m=139819485423701&w=2

No one that cares enough to use LibreSSL over OpenSSL would want FIPS as reintroducing it would make LibreSSL demonstrably worse. Anyone that requires FIPS doesn't know or care enough about security to have a dog in the fight.
2 comments
CiPHPerCoder 2570 days ago
> "But I need FIPS mode for blah blah." I notice nobody claims that there's any intrinsic value to FIPS mode. It's widely recognized as a worthless checkbox; now it's time to stand up to the clowns in charge and tell them the same thing. It's funny to compare how many people like to quote Gandhi's "Be the change that you wish to see in the world." with how few people actually like to be the change.

This is news to me! All I can say is, "Godspeed, Ted Unangst."

link
compuguy 2571 days ago
There are people in government that care about security. Unfortunately we aren't the ones that write the specifications/regulations.
link