OpenSSL/libssl only Allows to Disable Selected SSL/TLS Protocols #1254
Comments
|
So your suggestion is here to negate the configuration options? |
rdratlos
pushed a commit
to rdratlos/cherokee-webserver
that referenced
this issue
Apr 3, 2021
Cherokee Admin suggests system administrators that they have to enable wanted SSL/TLS protocols for traffic encryption. In general, OpenSSL accepts all SSL/TLS protocols requested by clients that are supported if the provided cipher set and certificates fit. - Add a new checkbox widget type CheckCfgTextInv with following behaviour: ------------------------------------------ |Checkbox Status|Configuration File Value| ------------------------------------------ | Checked | 0 | ------------------------------------------ | Not Checked | 1 | ------------------------------------------ - Update Cherokee Admin Advanced page to use the new checkbox - Add a new style for Notice widgets: Slim boxes with 50% width compared to normal boxes Fixes: cherokee#1254 Signed-off-by: Thomas Reim <reimth@gmail.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Cherokee Admin suggests system administrators that they have to enable wanted SSL/TLS protocols for traffic encryption. In general, OpenSSL accepts all SSL/TLS protocols requested by clients that are supported if the provided cipher set and certificates fit. Applications may disable selected (unsafe) protocols.
The text was updated successfully, but these errors were encountered: