Browse Source

Disable SSLv3 in the shipped configuration

Christoph Biedl 9 years ago
parent
commit
4025689be4
1 changed files with 2 additions and 2 deletions
  1. 2 2
      debian/ngircd.conf

+ 2 - 2
debian/ngircd.conf

@@ -258,9 +258,9 @@
 	# See 'man 1ssl ciphers' (OpenSSL) or 'man 3 gnutls_priority_init'
 	# (GnuTLS) for details.
 	# For OpenSSL:
-	;CipherList = HIGH:!aNULL:@STRENGTH
+	;CipherList = HIGH:!aNULL:@STRENGTH:!SSLv3
 	# For GnuTLS (this Debian package was linked against GnuTLS):
-	CipherList = SECURE128
+	CipherList = SECURE128:-VERS-SSL3.0
 
 	# Diffie-Hellman parameters
 	;DHFile = /etc/ngircd/dhparams.pem