diff options
author | Simon Lees <sflees@suse.de> | 2016-10-17 20:58:04 +1030 |
---|---|---|
committer | Simon Lees <sflees@suse.de> | 2016-10-17 21:02:10 +1030 |
commit | 48d567d87c2a7530a9399192547bb22974cf949f (patch) | |
tree | 1d86366fe7340f222fa9fa55267e831dbb225cb4 | |
parent | 8e89840193b104d500d068f05f1f2d45fec6d191 (diff) | |
download | efl-48d567d87c2a7530a9399192547bb22974cf949f.tar.gz |
Emile: use stronger ssl cipher
Follows on from 356a1aa87a04a8d1c43e01fa861270d0947069c0 emile
didn't exist when this work was done originally
-rw-r--r-- | src/lib/emile/emile_cipher_openssl.c | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/src/lib/emile/emile_cipher_openssl.c b/src/lib/emile/emile_cipher_openssl.c index 2bbe83fb50..301f3ba22c 100644 --- a/src/lib/emile/emile_cipher_openssl.c +++ b/src/lib/emile/emile_cipher_openssl.c @@ -321,7 +321,7 @@ emile_cipher_server_listen(Emile_Cipher_Type t) INF("DH params successfully generated and applied!"); if (!SSL_CTX_set_cipher_list(r->ssl_ctx, - "aNULL:!eNULL:!LOW:!EXPORT:@STRENGTH")) + "aRSA+HIGH:+kEDH:+kRSA:!kSRP:!kPSK:+3DES:!MD5")) goto on_error; return r; @@ -748,7 +748,7 @@ emile_cipher_server_connect(Emile_Cipher_Type t) } if (!SSL_CTX_set_cipher_list(r->ssl_ctx, - "aNULL:!eNULL:!LOW:!EXPORT:!ECDH:RSA:AES:!PSK:@STRENGTH")) + "aRSA+HIGH:+kEDH:+kRSA:!kSRP:!kPSK:+3DES:!MD5")) goto on_error; return r; |