I noticed a new option no-weak-ssl-ciphers. It defines
OPENSSL_NO_WEAK_SSL_CIPHERS.
>From a grep it looks like OPENSSL_NO_WEAK_SSL_CIPHERS is used by
s3_lib.c. Inspecting the hits, it appears the define disables cipher
suites with RC4.
I also noticed there is some use of MD5 which is not guarded
> On Mar 6, 2016, at 7:04 PM, Jeffrey Walton wrote:
>
> So my question is, does OPENSSL_NO_WEAK_SSL_CIPHERS do anything more
> than remove RC4?
In master, at present, that's it. This may change.
--
Viktor.
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailma
> On Mar 6, 2016, at 7:13 PM, Viktor Dukhovni
> wrote:
>
>
>> On Mar 6, 2016, at 7:04 PM, Jeffrey Walton wrote:
>>
>> So my question is, does OPENSSL_NO_WEAK_SSL_CIPHERS do anything more
>> than remove RC4?
>
> In master, at present, that's it. This may change.
The only remaining use of M
