hi,
i'm trying force cipher list through options like
modparam("tls", "cipher_list", "TLS_RSA_WITH_AES_256_CBC_SHA256")
modparam("tls", "cipher_list", "RSA")
...
but
ssldump -i enp2s0 port 5061 shows every time
ServerHello
Version 3.3
session_id[0]=
cipherSuite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
i tried lower crypto policy to LEGACY. nothing changed
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/security_hardening/using-the-system-wide-cryptographic-policies_security-hardening
certificates are from Lets Encrypt if that does matter
OS Rocky9(RHEL9), kamailio 5.7.3 from official repo
any ideas/tips?
thanks
Marek
__________________________________________________________
Kamailio - Users Mailing List - Non Commercial Discussions
To unsubscribe send an email to sr-users-le...@lists.kamailio.org
Important: keep the mailing list in the recipients, do not reply only to the
sender!
Edit mailing list options or unsubscribe:
