Re: [ngIRCd-ML] ngIRCd-ML Digest, Vol 95, Issue 1

2 Sep 2013


      On 09/02/2013 05:00 AM, ngircd-ml-request@arthur.barton.de wrote:
...
I am using OpenSSL (1.*) with Ngircd to enforce SSL connections.
Is there a possibility that I can enforce certain ciphers or disable
certain weak ciphers?
Perhaps use the 'stunnel' method for serving ngircd over SSL and disable weak
ciphers through stunnel's configuration, see http://ngircd.barton.de/doc/SSL.txt
options = NO_SSLv2
ciphers = ALL:-ADH:+HIGH:+MEDIUM:-LOW:-SSLv2:-EXP
If you're using RHEL-derived distribution, perhaps enable FIPS mode to disable
weak ciphers system-wide see section 7.2.1 in the below URL:
https://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux/...
Cheers,
Nathan

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

Re: [ngIRCd-ML] ngIRCd-ML Digest, Vol 95, Issue 1