I have a fairly basic server set up based on various examples I've seen.
I run an nmap script I found against it and see only 16 ciphers listed,
none of which are supported by modern web browsers.
Yet when I run "openssl ciphers I get a list of 97.
I realize some of these are old and deprecated etc, but where does the
default list come from?
I tried this code to set it to use one of the more modern ciphers shown in
the the openssl ciphers output:
char *ssl_cipher = "ECDHE-ECDSA-AES128-GCM-SHA256";
if(!SSL_CTX_set_cipher_list(jav->ctx, ssl_cipher))
return (false);
but after that the nmap script doesn't find any ciphers.
Any suggestions?
--
Chris Bare
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
