Skip to content

Commit

Permalink
Remove RC4 cipher suites from SSLContext::DEFAULT_PARAMS
Browse files Browse the repository at this point in the history 
This commit removes insecure RC4 ciper suites [1] from being used by
default. If needed, users can still specify the usage of it by
specifying it explicitly.

[1]: https://tools.ietf.org/html/rfc7465
  • Loading branch information
@jsyeo
jsyeo committed Jul 4, 2016
1 parent 4a34a97 commit cb3b838
Showing 1 changed file with 0 additions and 3 deletions.
3 changes: 0 additions & 3 deletions lib/openssl/ssl.rb
View file
Original file line number Diff line number Diff line change
Expand Up @@ -50,9 +50,6 @@ class SSLContext
AES256-SHA256
AES128-SHA
AES256-SHA
ECDHE-ECDSA-RC4-SHA
ECDHE-RSA-RC4-SHA
RC4-SHA
}.join(":"),
:options => -> {
opts = OpenSSL::SSL::OP_ALL
Expand Down

0 comments on commit cb3b838

Please sign in to comment.