[open-ils-commits] [GIT] Evergreen ILS branch rel_2_0 updated. 340e7c4b577afa9ca1e132345ba4b57ff3111187
Evergreen Git
git at git.evergreen-ils.org
Mon Oct 31 12:05:19 EDT 2011
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "Evergreen ILS".
The branch, rel_2_0 has been updated
via 340e7c4b577afa9ca1e132345ba4b57ff3111187 (commit)
from 6b3f2dee7a3454193914bf80e3c7a102d68b15e5 (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit 340e7c4b577afa9ca1e132345ba4b57ff3111187
Author: Michael Peters <mrpeters at library.in.gov>
Date: Thu Oct 27 09:42:37 2011 -0400
A tweak to eg.conf to prevent against the BEAST exploit in TLS/SSL
Based on recommedation from https://community.qualys.com/blogs/securitylabs/2011/10/17/mitigating-the-beast-attack-on-tls
Signed-off-by: Michael Peters <mrpeters at library.in.gov>
Signed-off-by: Galen Charlton <gmc at esilibrary.com>
diff --git a/Open-ILS/examples/apache/eg.conf b/Open-ILS/examples/apache/eg.conf
index 0b9933e..5e48bd2 100644
--- a/Open-ILS/examples/apache/eg.conf
+++ b/Open-ILS/examples/apache/eg.conf
@@ -87,7 +87,8 @@ NameVirtualHost *:443
ServerName localhost:443
ServerAlias 127.0.0.1:443
SSLEngine on
- SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
+ SSLHonorCipherOrder On
+ SSLCipherSuite ECDHE-RSA-AES256-SHA384:AES256-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH:!AESGCM
# If you don't have an SSL cert, you can create self-signed
# certificate and key with:
-----------------------------------------------------------------------
Summary of changes:
Open-ILS/examples/apache/eg.conf | 3 ++-
1 files changed, 2 insertions(+), 1 deletions(-)
hooks/post-receive
--
Evergreen ILS
More information about the open-ils-commits
mailing list