Re: Disable SSLv3 and set cipher list for bozohttpd

To: Jean-Yves Migeon <jym%NetBSD.org@localhost>
Subject: Re: Disable SSLv3 and set cipher list for bozohttpd
From: Thor Lancelot Simon <tls%panix.com@localhost>
Date: Fri, 11 Dec 2015 21:22:58 -0500

On Thu, Dec 10, 2015 at 12:22:55PM +0100, Jean-Yves Migeon wrote:
>     TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA

For standards compliance you need that one -- at least for the moment,
clients that do not support it are buggy -- but it ought to be last in
the list.

I wouldn't have much trouble picking 3 more.  Make it 5 and it's dead
simple.

Thor

References:
- Disable SSLv3 and set cipher list for bozohttpd
  - From: tr
- Re: Disable SSLv3 and set cipher list for bozohttpd
  - From: Christos Zoulas
- Re: Disable SSLv3 and set cipher list for bozohttpd
  - From: Jean-Yves Migeon
- Re: Disable SSLv3 and set cipher list for bozohttpd
  - From: tr
- Re: Disable SSLv3 and set cipher list for bozohttpd
  - From: Thor Lancelot Simon
- Re: Disable SSLv3 and set cipher list for bozohttpd
  - From: Jean-Yves Migeon

Prev by Date: Re: Disable SSLv3 and set cipher list for bozohttpd
Next by Date: Re: Disable SSLv3 and set cipher list for bozohttpd
Previous by Thread: Re: Disable SSLv3 and set cipher list for bozohttpd
Next by Thread: Re: Disable SSLv3 and set cipher list for bozohttpd
Indexes:

Home | Main Index | Thread Index | Old Index