[open-ils-commits] [GIT] Evergreen ILS branch master updated. d2e88db7f4ac78a89ea604c480f653e1431d7639
Evergreen Git
git at git.evergreen-ils.org
Mon Oct 31 12:04:59 EDT 2011
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "Evergreen ILS".
The branch, master has been updated
via d2e88db7f4ac78a89ea604c480f653e1431d7639 (commit)
from 3c5e7a0d2a79f6c50daaf85fc751174b253c9869 (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit d2e88db7f4ac78a89ea604c480f653e1431d7639
Author: Michael Peters <mrpeters at library.in.gov>
Date: Thu Oct 27 09:42:37 2011 -0400
A tweak to eg.conf to prevent against the BEAST exploit in TLS/SSL
Based on recommedation from https://community.qualys.com/blogs/securitylabs/2011/10/17/mitigating-the-beast-attack-on-tls
Signed-off-by: Michael Peters <mrpeters at library.in.gov>
Signed-off-by: Galen Charlton <gmc at esilibrary.com>
diff --git a/Open-ILS/examples/apache/eg.conf b/Open-ILS/examples/apache/eg.conf
index 77b5f40..e2b0584 100644
--- a/Open-ILS/examples/apache/eg.conf
+++ b/Open-ILS/examples/apache/eg.conf
@@ -109,7 +109,8 @@ NameVirtualHost *:443
ServerName localhost:443
ServerAlias 127.0.0.1:443
SSLEngine on
- SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
+ SSLHonorCipherOrder On
+ SSLCipherSuite ECDHE-RSA-AES256-SHA384:AES256-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH:!AESGCM
# If you don't have an SSL cert, you can create self-signed
# certificate and key with:
-----------------------------------------------------------------------
Summary of changes:
Open-ILS/examples/apache/eg.conf | 3 ++-
1 files changed, 2 insertions(+), 1 deletions(-)
hooks/post-receive
--
Evergreen ILS
More information about the open-ils-commits
mailing list