+SSLv3 in the SSLCipherSuite, -SSLv3 in the SSLProtocol.
authorAaron Kaplan <aaron@lo-res.org>
Fri, 17 Oct 2014 12:30:04 +0000 (14:30 +0200)
committerAaron Kaplan <aaron@lo-res.org>
Fri, 17 Oct 2014 12:30:04 +0000 (14:30 +0200)
See the posting "The Poodle killed it" on the www.bettercrypto.org homepage

src/common/cipherStringB.tex

index 9ff5714..c943b89 100644 (file)
@@ -4,5 +4,5 @@
 % 2014/07/07  - order by cipher strenght and not by HMAC lenght
 %             - also see the discussion on http://lists.cert.at/pipermail/ach/2014-June/001454.html
 %             The idea was to remove AES256 and CAMMELIA 256 and also SHA384
-\seqsplit{EDH+CAMELLIA:EDH+aRSA:EECDH+aRSA+AESGCM:EECDH+aRSA+SHA256:EECDH:+CAMELLIA128:+AES128:!SSLv3:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!DSS:!RC4:!SEED:!IDEA:!ECDSA:kEDH:CAMELLIA128-SHA:AES128-SHA}
+\seqsplit{EDH+CAMELLIA:EDH+aRSA:EECDH+aRSA+AESGCM:EECDH+aRSA+SHA256:EECDH:+CAMELLIA128:+AES128:+SSLv3:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!DSS:!RC4:!SEED:!IDEA:!ECDSA:kEDH:CAMELLIA128-SHA:AES128-SHA}