Here is the investigation report on the issue:
https://fedorahosted.org/pki/ticket/1556#comment:1
Under which a couple things could be discussed.

Here is the workaround:
https://fedorahosted.org/pki/ticket/1556#comment:2

thanks,
Christina

On 08/13/2015 07:47 PM, Christina Fu wrote:

This is a preliminary patch for:
https://fedorahosted.org/pki/ticket/1556 Weak HTTPS TLS ciphers

It is preliminary because I have to leave a couple RSA ciphers under the ECC option due to the fact that if we leave that out, the configuration will not be able to connect with the temporary ssl server cert.

We could add code to remove those after the configuration, or we can leave it for a separate ticket.
We can discuss tomorrow morning.

thanks,
Christina
_______________________________________________
Pki-devel mailing list
Pki-devel@redhat.com
https://www.redhat.com/mailman/listinfo/pki-devel