Skip to content
Snippets Groups Projects
  • Thomas Bellman's avatar
    eab79cee
    mod_ssl: Default to not support known bad modes. · eab79cee
    Thomas Bellman authored
    All the SSL versions, as well as TLS 1.0 and 1.1, are known to have
    security problems.  Default to not use them when enabling mod_ssl.
    Likewise, by default don't support low encryption cipher suites.
    
    Unfortunately, what is considered secure changes with time, and in
    particular the cipher suites we have selected is likely to quickly
    become outdated.  Oh well, users can always override...
    eab79cee
    History
    mod_ssl: Default to not support known bad modes.
    Thomas Bellman authored
    All the SSL versions, as well as TLS 1.0 and 1.1, are known to have
    security problems.  Default to not use them when enabling mod_ssl.
    Likewise, by default don't support low encryption cipher suites.
    
    Unfortunately, what is considered secure changes with time, and in
    particular the cipher suites we have selected is likely to quickly
    become outdated.  Oh well, users can always override...
Code owners
Assign users and groups as approvers for specific file changes. Learn more.