NetTalk Central

Author Topic: SSL Default cipher list  (Read 3143 times)

terryd

  • Hero Member
  • *****
  • Posts: 759
    • View Profile
    • Davcomm
    • Email
SSL Default cipher list
« on: July 01, 2015, 06:16:41 AM »
In the documentation there is this comment:
The default Cipher List looks like this;
ThisWebServer.SSLCertificateOptions.CiphersAllowed = 'ALL:!ADH:RC4+RSA:+HIGH:!MEDIUM:!LOW:!SSLv2:!EXPORT'

As you can see this limits the cipher list to only HIGH level ciphers, and removes support for any SSLv2 ciphers. If, for example, you wanted to include MEDIUM level ciphers as well, then you might set;

ThisWebServer.SSLCertificateOptions.CiphersAllowed = 'ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:!LOW:!SSLv2:!EXPORT'

Is there some sort of documentation that parses the above?
Terry Davidson
Windows 10 64 bit/Windows7 64bit
Clarion 9.1.11529/Clarion10 12567
Nettalk 913
Nettalk 1015
StringTheory267/Winevent515/XFiles298/MessageBox239/Cryptonite186

Bruce

  • Global Moderator
  • Hero Member
  • *****
  • Posts: 11244
    • View Profile
Re: SSL Default cipher list
« Reply #1 on: July 01, 2015, 10:33:54 PM »
It's the standard OpenSSL CipherList format, used by most engines that support OpenSSL.

So it's not "NetTalk documented" but I suspect if you google around you'll find it somewhere "OpenSSL documented".

cheers
Bruce