[open-ils-commits] [GIT] Evergreen ILS branch rel_2_1 updated. 06ffbd4d15019ab82707179243670c2591209fc7
Evergreen Git
git at git.evergreen-ils.org
Mon Oct 31 12:05:37 EDT 2011
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "Evergreen ILS".
The branch, rel_2_1 has been updated
via 06ffbd4d15019ab82707179243670c2591209fc7 (commit)
from 39103c9a6997e8fda806a0f707e6f15ddd6aee04 (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit 06ffbd4d15019ab82707179243670c2591209fc7
Author: Michael Peters <mrpeters at library.in.gov>
Date: Thu Oct 27 09:42:37 2011 -0400
A tweak to eg.conf to prevent against the BEAST exploit in TLS/SSL
Based on recommedation from https://community.qualys.com/blogs/securitylabs/2011/10/17/mitigating-the-beast-attack-on-tls
Signed-off-by: Michael Peters <mrpeters at library.in.gov>
Signed-off-by: Galen Charlton <gmc at esilibrary.com>
diff --git a/Open-ILS/examples/apache/eg.conf b/Open-ILS/examples/apache/eg.conf
index 3bf5696..c050826 100644
--- a/Open-ILS/examples/apache/eg.conf
+++ b/Open-ILS/examples/apache/eg.conf
@@ -109,7 +109,8 @@ NameVirtualHost *:443
ServerName localhost:443
ServerAlias 127.0.0.1:443
SSLEngine on
- SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
+ SSLHonorCipherOrder On
+ SSLCipherSuite ECDHE-RSA-AES256-SHA384:AES256-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH:!AESGCM
# If you don't have an SSL cert, you can create self-signed
# certificate and key with:
-----------------------------------------------------------------------
Summary of changes:
Open-ILS/examples/apache/eg.conf | 3 ++-
1 files changed, 2 insertions(+), 1 deletions(-)
hooks/post-receive
--
Evergreen ILS
More information about the open-ils-commits
mailing list