On Thu, Dec 17, 2009 at 6:21 PM, Justin Pasher
just...@newmediagateway.comwrote:
François Beaune wrote:
[snip]
I'm still getting the same list, even if I use the SSLCipherSuite you
suggested, so it's clearly not used.
On my side (in my subdomain's configuration), I only have one
On Wed, Dec 16, 2009 at 7:00 PM, Justin Pasher
just...@newmediagateway.comwrote:
[snip]
Here is the SSLCipherSuite directive that I use on my servers to lock out
insecure ciphers:
SSLCipherSuite AES256-SHA:DES-CBC3-SHA:AES128-SHA:RC4-SHA:RC4-MD5
Try setting your config to this value.
François Beaune wrote:
On Wed, Dec 16, 2009 at 7:00 PM, Justin Pasher
just...@newmediagateway.com mailto:just...@newmediagateway.com wrote:
[snip]
Here is the SSLCipherSuite directive that I use on my servers to
lock out insecure ciphers:
SSLCipherSuite
François Beaune wrote:
Hey Justin,
Thanks for your answer. I did add the various versions of
the SSLCipherSuite directive to my virtual host container, sorry if
that wasn't clear.
In the meantime I found that, by inspecting the handshake between
TortoiseSVN and Apache, the connection does
On Wed, Dec 16, 2009 at 5:03 PM, Justin Pasher
just...@newmediagateway.comwrote:
François Beaune wrote:
Hey Justin,
Thanks for your answer. I did add the various versions of the
SSLCipherSuite directive to my virtual host container, sorry if that wasn't
clear.
In the meantime I found
François Beaune wrote:
Sorry, I had overlooked your suggestion. Here's the output of the script:
$ ./openssl_check.sh svn.mydomain.net http://svn.mydomain.net
Checking svn.mydomain.net:443 http://svn.mydomain.net:443 ...
+ EXP1024-RC4-SHA at Server public key is 2048 bit
+
Hello,
I have a setup where Apache 2.2.3 is serving a large SVN repository with
WebDAV over HTTPS (using basic authentication).
Everything is working correctly; I would simply like to force usage of
faster cipher algorithms (trading some security in favor of speed) than what
seems to be allowed
François Beaune wrote:
Hello,
I have a setup where Apache 2.2.3 is serving a large SVN
repository with WebDAV over HTTPS (using basic authentication).
Everything is working correctly; I would simply like to force usage
of faster cipher algorithms (trading some security in favor of speed)
Hey Justin,
Thanks for your answer. I did add the various versions of
the SSLCipherSuite directive to my virtual host container, sorry if that
wasn't clear.
In the meantime I found that, by inspecting the handshake between
TortoiseSVN and Apache, the connection does use RC4, which is good.