projects / platform / upstream / nodejs.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 20f8e7f) | patch
tls: more secure defaults
authorRoman Reiss <me@silverwind.io>
Sun, 15 Feb 2015 17:43:36 +0000 (18:43 +0100)
committerFedor Indutny <fedor@indutny.com>
Mon, 16 Feb 2015 11:33:12 +0000 (12:33 +0100)
commit77f35861d0217273b9e478f5d35bd7d8e471e14f
treef027b88a1ef22323dd66986f7e89546d2cd8c4f2tree | snapshot
parent20f8e7f17a931e3852f7c58a25db55bd78943697commit | diff
tls: more secure defaults

This updates the default cipher suite to an more secure list, which
prefers strong ciphers with Forward Secrecy. Additionally, it enables
`honorCipherOrder` by default.

Noteable effect of this change is that the insecure RC4 ciphers are
disabled and that Chrome negotiates a more secure ECDHE cipher.

Reviewed-By: Ben Noordhuis <info@bnoordhuis.nl>
Reviewed-By: Fedor Indutny <fedor@indutny.com>
PR-URL: https://github.com/iojs/io.js/pull/826
doc/api/tls.markdown diff | blob | history
lib/_tls_wrap.js diff | blob | history
lib/tls.js diff | blob | history
test/parallel/test-tls-dhe.js diff | blob | history
Domain: Web Framework / Common;