2023-10-29 01:28:26 |
Dimitri John Ledkov |
description |
Switch IMA default hash to sha256
Originally when IMA was requested to be turned on, it was requested to be on with SHA256, despite linux kernel upstream default of sha1.
Also most use sha256. One can switch to sha1 with kernel command line ima_hash=sha1 |
Switch IMA default hash to sha256
Some arches use sha256, others sha1.
sha256 is widely accelerated now.
most use sha256.
sha1 usage must stop after 2030, for NIST compliance.
One can switch to sha1 with kernel command line ima_hash=sha1 |
|