Hello Stef, On 18-jul-09, at 18:19, Stef Telford wrote:
> I am hitting a bit of a stumbling block with SSL. > I have it configured to run against my SCGI application/daemon no > problem, however, I am unable to find where to control the SSL Cipher > Suite or SSL Protocol list. Am I overlooking something ? > > The reason for this is that I know under apache you can do > something > as 'simple' as putting into your host config; > > SSLProtocol -all +SSLv3 +TLSv1 > SSLCipherSuite HIGH:!SSLv2:!ADH:!aNULL:!eNULL:!NULL:!kEDH > > How would I do this under cherokee ? By default Cherokee accepts only SSLv3 and TLS (~ SSLv2 is disabled). The accepted ciphers can be configured per virtual server. You have to enter the virtual server configuration, select the "Security" tab, and enter the same SSLCipherSuite string in the "Cipher" field. Cheers! -- Octality http://www.octality.com/ _______________________________________________ Cherokee mailing list Cherokee@lists.octality.com http://lists.octality.com/listinfo/cherokee
