Re: Disable SSLv3 and set cipher list for bozohttpd

[Kamil Rytarowski <n54%gmx.com@localhost>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

On 10.12.2015 14:24, Christos Zoulas wrote:
> The command line could override the default "sane" built-in.
> 

I'm for this option.

I don't have strong feelings regarding narrow or wide set of accepted
or blacklisted ciphers. I would go for a wider and safe set - and
getting not worse than A- score.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
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=VnM5
-----END PGP SIGNATURE-----