prosody
log
graph
tags
bookmarks
branches
e6fed1d80116
browse
changeset
core/certmanager.lua
annotate
comparison
diff
file
raw
Log
latest
help
RSS:
Atom:
Find changesets by keywords by author, files, the commit message, revision number or hash, or
revset expression
.
Software
/
code
/
prosody
Log
core/certmanager.lua @ 5915:
e6fed1d80116
less
more
|
(0)
-30
-10
-7
tip
description
author
age
Back out 1b0ac7950129, as SSLv3 appears to still be in moderate use on the network. Also, although obsolete, SSLv3 isn't documented to have any weaknesses that TLS 1.0 (the most common version used today) doesn't also have. Get your act together clients!
Matthew Wild
Tue, 12 Nov 2013 02:13:01 +0000
Merge 0.9->0.10
Matthew Wild
Sun, 10 Nov 2013 18:49:34 +0000
certmanager: Update default cipher string to prefer forward-secrecy over cipher strength and to disable triple-DES (weaker and much slower than AES)
Matthew Wild
Sun, 10 Nov 2013 18:46:48 +0000
Merge 0.9->0.10
Matthew Wild
Sat, 09 Nov 2013 18:36:32 +0000
certmanager: Fix order of options, so that the dynamic option is at the end of the array
Matthew Wild
Sat, 09 Nov 2013 17:54:21 +0000
certmanager: Default to using the server's cipher preference order by default, as clients have been shown to commonly select weak and insecure ciphers even when they support stronger ones
Matthew Wild
Sat, 09 Nov 2013 17:50:19 +0000
Merge 0.9 -> 0.10
Kim Alvefur
Thu, 31 Oct 2013 20:47:57 +0100
less
more
|
(0)
-30
-10
-7
tip
