Software / code / prosody
Changeset
13178:e689d4c45681 0.12
core.certmanager: Update Mozilla TLS config to version 5.7
Ref https://github.com/mozilla/server-side-tls/issues/285
| author | Kim Alvefur <zash@zash.se> |
|---|---|
| date | Sun, 09 Jul 2023 21:18:47 +0200 |
| parents | 13177:6f64542a1336 |
| children | 13179:1b1ed555f307 13216:fcc052ca1652 |
| files | core/certmanager.lua |
| diffstat | 1 files changed, 2 insertions(+), 1 deletions(-) [+] |
line wrap: on
line diff
--- a/core/certmanager.lua Sat Jul 08 18:23:40 2023 +0200 +++ b/core/certmanager.lua Sun Jul 09 21:18:47 2023 +0200 @@ -240,7 +240,7 @@ local mozilla_ssl_configs = { -- https://wiki.mozilla.org/Security/Server_Side_TLS - -- Version 5.6 as of 2021-12-26 + -- Version 5.7 as of 2023-07-09 modern = { protocol = "tlsv1_3"; options = { cipher_server_preference = false }; @@ -261,6 +261,7 @@ "ECDHE-RSA-CHACHA20-POLY1305"; "DHE-RSA-AES128-GCM-SHA256"; "DHE-RSA-AES256-GCM-SHA384"; + "DHE-RSA-CHACHA20-POLY1305"; }; curveslist = { "X25519"; "prime256v1"; "secp384r1" }; ciphersuites = { "TLS_AES_128_GCM_SHA256"; "TLS_AES_256_GCM_SHA384"; "TLS_CHACHA20_POLY1305_SHA256" };
