NetTalk Central

NetTalk Web Server => Web Server - Ask For Help => Topic started by: terryd on July 01, 2015, 06:16:41 AM

Title: SSL Default cipher list
Post by: terryd on July 01, 2015, 06:16:41 AM: In the documentation there is this comment:
The default Cipher List looks like this;
ThisWebServer.SSLCertificateOptions.CiphersAllowed = 'ALL:!ADH:RC4+RSA:+HIGH:!MEDIUM:!LOW:!SSLv2:!EXPORT'

As you can see this limits the cipher list to only HIGH level ciphers, and removes support for any SSLv2 ciphers. If, for example, you wanted to include MEDIUM level ciphers as well, then you might set;

ThisWebServer.SSLCertificateOptions.CiphersAllowed = 'ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:!LOW:!SSLv2:!EXPORT'

Is there some sort of documentation that parses the above?
Title: Re: SSL Default cipher list
Post by: Bruce on July 01, 2015, 10:33:54 PM: It's the standard OpenSSL CipherList format, used by most engines that support OpenSSL.

So it's not "NetTalk documented" but I suspect if you google around you'll find it somewhere "OpenSSL documented".

cheers
Bruce

SMF 2.0.19 | SMF © 2021, Simple Machines