summaryrefslogtreecommitdiff
path: root/usr.sbin/relayd/relayd.h
diff options
context:
space:
mode:
authorReyk Floeter <reyk@cvs.openbsd.org>2007-02-24 15:48:55 +0000
committerReyk Floeter <reyk@cvs.openbsd.org>2007-02-24 15:48:55 +0000
commitdea580a9986dc2431d84eb0bc9d0d21ad14781cf (patch)
treeb55cf3fb10f00f1c04c3a75abad663e7980161da /usr.sbin/relayd/relayd.h
parent008c5403bf676c8c15de14562f346b2408425e99 (diff)
disable SSLv2 and use "HIGH" crypto cipher suites by default.
suggested by dlg@
Diffstat (limited to 'usr.sbin/relayd/relayd.h')
-rw-r--r--usr.sbin/relayd/relayd.h6
1 files changed, 4 insertions, 2 deletions
diff --git a/usr.sbin/relayd/relayd.h b/usr.sbin/relayd/relayd.h
index 1cbf33b45d7..205a1af9027 100644
--- a/usr.sbin/relayd/relayd.h
+++ b/usr.sbin/relayd/relayd.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: relayd.h,v 1.28 2007/02/24 00:22:32 reyk Exp $ */
+/* $OpenBSD: relayd.h,v 1.29 2007/02/24 15:48:54 reyk Exp $ */
/*
* Copyright (c) 2006, 2007 Pierre-Yves Ritschard <pyr@spootnik.org>
@@ -396,7 +396,9 @@ enum prototype {
#define SSLFLAG_SSLV3 0x02
#define SSLFLAG_TLSV1 0x04
#define SSLFLAG_VERSION 0x07
-#define SSLFLAG_DEFAULT (SSLFLAG_SSLV2|SSLFLAG_SSLV3|SSLFLAG_TLSV1)
+#define SSLFLAG_DEFAULT (SSLFLAG_SSLV3|SSLFLAG_TLSV1)
+
+#define SSLCIPHERS_DEFAULT "HIGH"
struct protocol {
objid_t id;
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-24 10:13:19 +0000