tech-security archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
Re: Disable SSLv3 and set cipher list for bozohttpd
On Thu, Dec 10, 2015 at 12:22:55PM +0100, Jean-Yves Migeon wrote:
> TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
For standards compliance you need that one -- at least for the moment,
clients that do not support it are buggy -- but it ought to be last in
the list.
I wouldn't have much trouble picking 3 more. Make it 5 and it's dead
simple.
Thor
Home |
Main Index |
Thread Index |
Old Index