diff options
| author | Alexander Barton <alex@barton.de> | 2013-09-15 17:57:41 +0200 |
|---|---|---|
| committer | Alexander Barton <alex@barton.de> | 2013-09-15 17:57:47 +0200 |
| commit | b9006acee3649600226652a8361f13c859726cf2 (patch) | |
| tree | 3a749e1e34b3384410785be9a8526d8474827e5c /man/ngircd.conf.5.tmpl | |
| parent | 51231ac8d45bf329f4724a145e6bc7a3ea118570 (diff) | |
| download | ngircd-b9006acee3649600226652a8361f13c859726cf2.tar.gz ngircd-b9006acee3649600226652a8361f13c859726cf2.zip | |
Cipher list selection for GnuTLS
This patch implements the missing functionality for cipher list selection using GnuTLS (our OpenSSL code has this already).
Diffstat (limited to 'man/ngircd.conf.5.tmpl')
| -rw-r--r-- | man/ngircd.conf.5.tmpl | 12 |
1 files changed, 7 insertions, 5 deletions
diff --git a/man/ngircd.conf.5.tmpl b/man/ngircd.conf.5.tmpl index 263dec04..862c1424 100644 --- a/man/ngircd.conf.5.tmpl +++ b/man/ngircd.conf.5.tmpl @@ -367,11 +367,13 @@ when it is compiled with support for SSL using OpenSSL or GnuTLS! SSL Certificate file of the private server key. .TP \fBCipherList\fR (string) -OpenSSL only: Select cipher suites allowed for SSL/TLS connections. This -defaults to the empty string, so all supported ciphers are allowed. Please see -'man 1ssl ciphers' for details. This setting allows only "high strength" cipher -suites, disables the ones without authentication, and sorts by strength, for -example: "HIGH:!aNULL:@STRENGTH". +Select cipher suites allowed for SSL/TLS connections. This defaults to the +empty string, so all supported ciphers are allowed. +Please see 'man 1ssl ciphers' (OpenSSL) and 'man 3 gnutls_priority_init' +(GnuTLS) for details. +For example, this setting allows only "high strength" cipher suites, disables +the ones without authentication, and sorts by strength: +"HIGH:!aNULL:@STRENGTH" (OpenSSL), "SECURE128" (GnuTLS). .TP \fBDHFile\fR (string) Name of the Diffie-Hellman Parameter file. Can be created with GnuTLS |