Added DHE-RSA-CHACHA20-POLY1305 to default SSL Ciphers #1807

DoctorD90 · 2021-08-20T18:20:46Z

No description provided.

DarthGandalf · 2021-08-20T20:02:41Z

You've missed the "why?" part of the description

DarthGandalf · 2021-08-20T20:03:19Z

src/Socket.cpp

@@ -36,7 +36,10 @@ static CString ZNC_DefaultCipher() {
    return "ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:"
           "ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:"
           "ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:"
-           "DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384";
+           "DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:"


So this is not a copypaste from mozilla page anymore?

Chacha20 is a good one, under certain aspects, better then AES too.
It has been implemented for ECDHE version too.
I checked a bit, but I find out no good reasons to exclude it.
It is still a "copy/paste", with just the add of Chacha20 for the DHE.

Added DHE-RSA-CHACHA20-POLY1305 to default SSL Ciphers

3c751ee

DarthGandalf reviewed Aug 20, 2021

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Added DHE-RSA-CHACHA20-POLY1305 to default SSL Ciphers #1807

Added DHE-RSA-CHACHA20-POLY1305 to default SSL Ciphers #1807

DoctorD90 commented Aug 20, 2021

DarthGandalf commented Aug 20, 2021

DarthGandalf Aug 20, 2021

DoctorD90 Aug 20, 2021

Added DHE-RSA-CHACHA20-POLY1305 to default SSL Ciphers #1807

Are you sure you want to change the base?

Added DHE-RSA-CHACHA20-POLY1305 to default SSL Ciphers #1807

Conversation

DoctorD90 commented Aug 20, 2021

DarthGandalf commented Aug 20, 2021

DarthGandalf Aug 20, 2021

Choose a reason for hiding this comment

DoctorD90 Aug 20, 2021

Choose a reason for hiding this comment