<html>
  <head>
    <meta content="text/html; charset=ISO-8859-1"
      http-equiv="Content-Type">
  </head>
  <body bgcolor="#FFFFFF" text="#000000">
    Here is the investigation report on the issue:<br>
    <a class="moz-txt-link-freetext" href="https://fedorahosted.org/pki/ticket/1556#comment:1">https://fedorahosted.org/pki/ticket/1556#comment:1</a><br>
    Under which a couple things could be discussed.<br>
    <br>
    Here is the workaround:<br>
    <a class="moz-txt-link-freetext" href="https://fedorahosted.org/pki/ticket/1556#comment:2">https://fedorahosted.org/pki/ticket/1556#comment:2</a><br>
    <br>
    thanks,<br>
    Christina<br>
    <br>
    <div class="moz-cite-prefix">On 08/13/2015 07:47 PM, Christina Fu
      wrote:<br>
    </div>
    <blockquote cite="mid:55CD56AF.8080008@redhat.com" type="cite">This
      is a preliminary patch for:
      <br>
      <a class="moz-txt-link-freetext" href="https://fedorahosted.org/pki/ticket/1556">https://fedorahosted.org/pki/ticket/1556</a> Weak HTTPS TLS ciphers
      <br>
      <br>
      It is preliminary because I have to leave a couple RSA ciphers
      under the ECC option due to the fact that if we leave that out,
      the configuration will not be able to connect with the temporary
      ssl server cert.
      <br>
      <br>
      We could add code to remove those after the configuration, or we
      can leave it for a separate ticket.
      <br>
      We can discuss tomorrow morning.
      <br>
      <br>
      thanks,
      <br>
      Christina
      <br>
      <br>
      <fieldset class="mimeAttachmentHeader"></fieldset>
      <br>
      <pre wrap="">_______________________________________________
Pki-devel mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Pki-devel@redhat.com">Pki-devel@redhat.com</a>
<a class="moz-txt-link-freetext" href="https://www.redhat.com/mailman/listinfo/pki-devel">https://www.redhat.com/mailman/listinfo/pki-devel</a></pre>
    </blockquote>
    <br>
  </body>
</html>