prosody
18ebc3874364

Find changesets by keywords by author, files, the commit message, revision number or hash, or revset expression.

Software / code / prosody

Changeset

5354:18ebc3874364

net.http: Disable SSLv2 support for HTTPS connections
author Matthew Wild <mwild1@gmail.com>
date Wed, 20 Mar 2013 20:31:52 +0000
parents 5353:8c3f28f5c1c1
children 5355:11eff33f60d3 5357:ac530c44772e
files net/http.lua
diffstat 1 files changed, 1 insertions(+), 1 deletions(-) [+]
line wrap: on
line diff
--- a/net/http.lua	Wed Mar 20 20:31:02 2013 +0000
+++ b/net/http.lua	Wed Mar 20 20:31:52 2013 +0000
@@ -190,7 +190,7 @@
 	
 	local sslctx = false;
 	if using_https then
-		sslctx = ex and ex.sslctx or { mode = "client", protocol = "sslv23" };
+		sslctx = ex and ex.sslctx or { mode = "client", protocol = "sslv23", options = { "no_sslv2" } };
 	end
 
 	req.handler, req.conn = server.wrapclient(conn, req.host, port, listener, "*a", sslctx);