Browse Source

[ssl] disable SSL3.0 by default

From: Stefan Bühler <stbuehler@web.de>

git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.4.x@2969 152afb58-edef-0310-8abb-c4023f1b3aa9
svn/tags/lighttpd-1.4.36
Stefan Bühler 7 years ago
parent
commit
084df7e99a
  1. 1
      NEWS
  2. 2
      src/configfile.c

1
NEWS

@ -10,6 +10,7 @@ NEWS
* add support for (Free)BSD extended attributes
* [build] use fortify flags with "extra-warnings"
* [mod_dirlisting,mod_redirect,mod_rewrite] abort config parsing if pcre-compile fails or isn't available
* [ssl] disable SSL3.0 by default
- 1.4.35 - 2014-03-12
* [network/ssl] fix build error if TLSEXT is disabled

2
src/configfile.c

@ -182,7 +182,7 @@ static int config_insert(server *srv) {
s->ssl_honor_cipher_order = 1;
s->ssl_empty_fragments = 0;
s->ssl_use_sslv2 = 0;
s->ssl_use_sslv3 = 1;
s->ssl_use_sslv3 = 0;
s->use_ipv6 = 0;
s->set_v6only = 1;
s->defer_accept = 0;

Loading…
Cancel
Save