From 3335b5e824eecf70055af985b12c60651787fbfc Mon Sep 17 00:00:00 2001 From: Tatsuya Kinoshita Date: Mon, 23 Jun 2014 22:32:21 +0900 Subject: Disable ciphers that use keys smaller than 128 bits Bug-Ubuntu: https://bugs.launchpad.net/ubuntu/+source/w3m/+bug/1325674 --- url.c | 1 + 1 file changed, 1 insertion(+) (limited to 'url.c') diff --git a/url.c b/url.c index ed6062e..e6b51c8 100644 --- a/url.c +++ b/url.c @@ -326,6 +326,7 @@ openSSLHandle(int sock, char *hostname, char **p_cert) SSL_load_error_strings(); if (!(ssl_ctx = SSL_CTX_new(SSLv23_client_method()))) goto eend; + SSL_CTX_set_cipher_list(ssl_ctx, "DEFAULT:!LOW:!EXP"); option = SSL_OP_ALL; if (ssl_forbid_method) { if (strchr(ssl_forbid_method, '2')) -- cgit v1.2.3