GitHub user terinjokes opened a pull request:
https://github.com/apache/couchdb/pull/213
Initial support for user configurable SSL ciphers
Adds user configuration for the following Erlang SSL settings:
* secure_renegotiate (default = false)
* ciphers (default = whatever that version of Erlang decides)
This is useful immediately because Erlang less than R16B03-1 has
incorrectly implements handshaking with elliptic curves, causing hard to debug
SSL errors in recent versions of Chrome, Safari, Firefox, curl and go (in a
very incomplete list).
It also allow administrators to change the priorities of ciphers for their
installation or remove ciphers in the wake of attacks.
You can merge this pull request into a Git repository by running:
$ git pull https://github.com/terinjokes/couchdb httpd_ssl
Alternatively you can review and apply these changes as the patch at:
https://github.com/apache/couchdb/pull/213.patch
To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:
This closes #213
----
commit c61212fb044f86d881c6b3ae47eb0e502b3ecefc
Author: Terin Stock <[email protected]>
Date: 2014-04-19T03:48:46Z
Initial support for user configurable SSL ciphers
----
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at [email protected] or file a JIRA ticket
with INFRA.
---
