Emile: use stronger ssl cipher

Follows on from 356a1aa87a04a8d1c43e01fa861270d0947069c0 emile didn't exist when this work was done originally
author: Simon Lees <sflees@suse.de> 2016-10-17 20:58:04 +1030
committer: Simon Lees <sflees@suse.de> 2016-10-17 21:02:10 +1030
commit: 48d567d87c2a7530a9399192547bb22974cf949f (patch)
tree: 1d86366fe7340f222fa9fa55267e831dbb225cb4
parent: 8e89840193b104d500d068f05f1f2d45fec6d191 (diff)
download: efl-48d567d87c2a7530a9399192547bb22974cf949f.tar.gz
1 files changed, 2 insertions, 2 deletions
diff --git a/src/lib/emile/emile_cipher_openssl.c b/src/lib/emile/emile_cipher_openssl.c
index 2bbe83fb50..301f3ba22c 100644
--- a/src/lib/emile/emile_cipher_openssl.c
+++ b/src/lib/emile/emile_cipher_openssl.c
@@ -321,7 +321,7 @@ emile_cipher_server_listen(Emile_Cipher_Type t)
    INF("DH params successfully generated and applied!");
 
    if (!SSL_CTX_set_cipher_list(r->ssl_ctx,
-                                "aNULL:!eNULL:!LOW:!EXPORT:@STRENGTH"))
+                                "aRSA+HIGH:+kEDH:+kRSA:!kSRP:!kPSK:+3DES:!MD5"))
      goto on_error;
 
    return r;
@@ -748,7 +748,7 @@ emile_cipher_server_connect(Emile_Cipher_Type t)
      }
 
    if (!SSL_CTX_set_cipher_list(r->ssl_ctx,
-                                "aNULL:!eNULL:!LOW:!EXPORT:!ECDH:RSA:AES:!PSK:@STRENGTH"))
+                                "aRSA+HIGH:+kEDH:+kRSA:!kSRP:!kPSK:+3DES:!MD5"))
      goto on_error;
 
    return r;
author	Simon Lees <sflees@suse.de>	2016-10-17 20:58:04 +1030
committer	Simon Lees <sflees@suse.de>	2016-10-17 21:02:10 +1030
commit	48d567d87c2a7530a9399192547bb22974cf949f (patch)
tree	1d86366fe7340f222fa9fa55267e831dbb225cb4
parent	8e89840193b104d500d068f05f1f2d45fec6d191 (diff)
download	efl-48d567d87c2a7530a9399192547bb22974cf949f.tar.gz