Fix ciphersuite list to enforce low priority for RC4.

2002-05-07 08:36:26 +00:00 · 2002-05-07 08:36:26 +00:00 · 98a9092af1
commit 98a9092af1
parent 87108f5af9
1 changed files with 1 additions and 1 deletions
--- a/ssl/ssl.h
+++ b/ssl/ssl.h
@ -269,7 +269,7 @@ extern "C" {
 /* The following cipher list is used by default.
 * It also is substituted when an application-defined cipher list string
 * starts with 'DEFAULT'. */
-#define SSL_DEFAULT_CIPHER_LIST	"ALL:!ADH:RC4:@STRENGTH"
+#define SSL_DEFAULT_CIPHER_LIST	"ALL:!ADH:+RC4:@STRENGTH" /* low priority for RC4 */

 /* Used in SSL_set_shutdown()/SSL_get_shutdown(); */
 #define SSL_SENT_SHUTDOWN	1