fixed vulnerability reported in EGI RT ticket #4781 1);

author Marcel Poul <marcel.poul@cern.ch>

Tue, 11 Dec 2012 17:59:04 +0000 (17:59 +0000)

committer Marcel Poul <marcel.poul@cern.ch>

Tue, 11 Dec 2012 17:59:04 +0000 (17:59 +0000)
author Marcel Poul <marcel.poul@cern.ch>
Tue, 11 Dec 2012 17:59:04 +0000 (17:59 +0000)
committer Marcel Poul <marcel.poul@cern.ch>
Tue, 11 Dec 2012 17:59:04 +0000 (17:59 +0000)
diff --git a/emi.canl.canl-c/src/canl_ssl.c b/emi.canl.canl-c/src/canl_ssl.c

index aa02051..9221334 100644 (file)
--- a/emi.canl.canl-c/src/canl_ssl.c
+++ b/emi.canl.canl-c/src/canl_ssl.c
@@ -87,8 +87,7 @@ ssl_initialize(glb_ctx *cc)
      if (ca_cert_dirn)
          free(ca_cert_dirn);
  
-    //err = SSL_CTX_set_cipher_list(ssl_ctx, "ALL:!LOW:!EXP:!MD5:!MD2");
-    err = SSL_CTX_set_cipher_list(ssl_ctx, "ALL");
+    err = SSL_CTX_set_cipher_list(ssl_ctx, "ALL:!LOW:!EXP:!MD5:!MD2");
      if (!err) {
          err = set_error(cc, ERR_get_error(), SSL_ERROR,
                  "Error setting cipher list");
author	Marcel Poul <marcel.poul@cern.ch>
	Tue, 11 Dec 2012 17:59:04 +0000 (17:59 +0000)
committer	Marcel Poul <marcel.poul@cern.ch>
	Tue, 11 Dec 2012 17:59:04 +0000 (17:59 +0000)