projects / platform / upstream / curl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 29fdb27) | patch
darwinssl: disable insecure ciphers by default
authorNick Zitzmann <nickzman@gmail.com>
Mon, 8 Apr 2013 23:07:20 +0000 (17:07 -0600)
committerNick Zitzmann <nickzman@gmail.com>
Mon, 8 Apr 2013 23:07:20 +0000 (17:07 -0600)
commitd7f4c3772e72ffc909a2823cec0766757eaf1245
tree658194beebcca71241dc9be96d09fa94edb4c7adtree | snapshot
parent29fdb2700f7979e71b8828c18e0e157a44b6db53commit | diff
darwinssl: disable insecure ciphers by default

I noticed that aria2's SecureTransport code disables insecure ciphers such
as NULL, anonymous, IDEA, and weak-key ciphers used by SSLv3 and later.
That's a good idea, and now we do the same thing in order to prevent curl
from accessing a "secure" site that only negotiates insecure ciphersuites.
RELEASE-NOTES diff | blob | history
lib/curl_darwinssl.c diff | blob | history
Domain: Network & Connectivity / Data Network;