openssl: Don't propose too weak ciphers.