[Pki-devel] [PATCH] Ticket #1556 Weak HTTPS TLS ciphers
John Magne
jmagne at redhat.com
Sat Aug 15 02:51:54 UTC 2015
ACK, based on the fact that is has been tested to work,
and that BobR has approved all the ciphers.
----- Original Message -----
From: "Christina Fu" <cfu at redhat.com>
To: "pki-devel" <pki-devel at redhat.com>
Sent: Friday, 14 August, 2015 6:34:15 PM
Subject: [Pki-devel] [PATCH] Ticket #1556 Weak HTTPS TLS ciphers
(this patch overrides the preliminary one sent out yesterday)
https://fedorahosted.org/pki/ticket/1556
Please note that the cipher lists can be considered to be ack'ed by Bob
Relyea as it incorporates feedback directly from him.
All changes have been tested to work for both RSA and ECC servers.
Ticket #1556 Weak HTTPS TLS ciphers
This patch fixes the RSA ciphers that were mistakenly turned on
under ECC
section, and off under RSA section. A few adjustments have also
been made
based on Bob Relyea's feedback. A new file,
<instance>/conf/ciphers.info
was also created to
1. provide info on the ciphers
2. provide default rsa and ecc ciphers for admins to incorporate
into earlier
instances (as migration script might not be ideal due to
possible customization)
thanks,
Christina
_______________________________________________
Pki-devel mailing list
Pki-devel at redhat.com
https://www.redhat.com/mailman/listinfo/pki-devel
More information about the Pki-devel
mailing list