generic-library/curl

Fork 0

Commit Graph

Author	SHA1	Message	Date
Daniel Stenberg	3b5c75ef3d	OpenSSL: deselect weak ciphers by default By default even recent versions of OpenSSL support and accept both "export strength" ciphers, small-bitsize ciphers as well as downright deprecated ones. This change sets a default cipher set that avoids the worst ciphers, and subsequently makes https://www.howsmyssl.com/a/check no longer grade curl/OpenSSL connects as 'Bad'. Bug: http://curl.haxx.se/bug/view.cgi?id=1323 Reported-by: Jeff Hodges	2014-01-12 00:14:01 +01:00
Steve Holme	f88f9bed00	vtls: Updated comments referencing sslgen.c and ssluse.c	2013-12-26 21:42:22 +00:00
Daniel Stenberg	92b9ae5c5d	openssl: renamed backend files to openssl.[ch]	2013-12-20 17:12:42 +01:00

Author

SHA1

Message

Date

Daniel Stenberg

3b5c75ef3d

OpenSSL: deselect weak ciphers by default

By default even recent versions of OpenSSL support and accept both
"export strength" ciphers, small-bitsize ciphers as well as downright
deprecated ones.

This change sets a default cipher set that avoids the worst ciphers, and
subsequently makes https://www.howsmyssl.com/a/check no longer grade
curl/OpenSSL connects as 'Bad'.

Bug: http://curl.haxx.se/bug/view.cgi?id=1323
Reported-by: Jeff Hodges

2014-01-12 00:14:01 +01:00

Steve Holme

f88f9bed00

vtls: Updated comments referencing sslgen.c and ssluse.c

2013-12-26 21:42:22 +00:00

Daniel Stenberg

92b9ae5c5d

openssl: renamed backend files to openssl.[ch]

2013-12-20 17:12:42 +01:00

3 Commits