pushed to DOGTAG_10_2_BRANCH (for later cherry picking), as planned
commit 67c895851781d69343979cbcff138184803880ea
thanks,
Christina
ACK, based on the fact that is has been tested to work, and that BobR has approved all the ciphers. ----- Original Message ----- From: "Christina Fu" <cfu@redhat.com> To: "pki-devel" <pki-devel@redhat.com> Sent: Friday, 14 August, 2015 6:34:15 PM Subject: [Pki-devel] [PATCH] Ticket #1556 Weak HTTPS TLS ciphers (this patch overrides the preliminary one sent out yesterday) https://fedorahosted.org/pki/ticket/1556 Please note that the cipher lists can be considered to be ack'ed by Bob Relyea as it incorporates feedback directly from him. All changes have been tested to work for both RSA and ECC servers. Ticket #1556 Weak HTTPS TLS ciphers This patch fixes the RSA ciphers that were mistakenly turned on under ECC section, and off under RSA section. A few adjustments have also been made based on Bob Relyea's feedback. A new file, <instance>/conf/ciphers.info was also created to 1. provide info on the ciphers 2. provide default rsa and ecc ciphers for admins to incorporate into earlier instances (as migration script might not be ideal due to possible customization) thanks, Christina _______________________________________________ Pki-devel mailing list Pki-devel@redhat.com https://www.redhat.com/mailman/listinfo/pki-devel