diff options
| author | Jason Yeo <jasonyeo88@gmail.com> | 2016-04-13 16:52:30 +0800 |
|---|---|---|
| committer | Jason Yeo <jasonyeo88@gmail.com> | 2016-07-04 17:34:23 +0800 |
| commit | cb3b8383c2b04ef6c7f21b14eb407e60ad7cebdb (patch) | |
| tree | 18e02df3c99f9fd1a46f594027a16122b9ff4ab2 /lib | |
| parent | 4a34a978ba93171475d8dd299d2307646df94554 (diff) | |
| download | ruby-openssl-cb3b8383c2b04ef6c7f21b14eb407e60ad7cebdb.tar.gz | |
Remove RC4 cipher suites from SSLContext::DEFAULT_PARAMS
This commit removes insecure RC4 ciper suites [1] from being used by
default. If needed, users can still specify the usage of it by
specifying it explicitly.
[1]: https://tools.ietf.org/html/rfc7465
Diffstat (limited to 'lib')
| -rw-r--r-- | lib/openssl/ssl.rb | 3 |
1 files changed, 0 insertions, 3 deletions
diff --git a/lib/openssl/ssl.rb b/lib/openssl/ssl.rb index 57519f2c..39ddf8a8 100644 --- a/lib/openssl/ssl.rb +++ b/lib/openssl/ssl.rb @@ -50,9 +50,6 @@ module OpenSSL AES256-SHA256 AES128-SHA AES256-SHA - ECDHE-ECDSA-RC4-SHA - ECDHE-RSA-RC4-SHA - RC4-SHA }.join(":"), :options => -> { opts = OpenSSL::SSL::OP_ALL |