]> git.ipfire.org Git - thirdparty/asterisk.git/commit
projects / thirdparty / asterisk.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e6c4a92) | patch
AST-2016-001 http: Provide greater control of TLS and set modern defaults. 60/2160/3
authorJoshua Colp <jcolp@digium.com>
Wed, 3 Feb 2016 18:02:01 +0000 (14:02 -0400)
committerKevin Harwell <kharwell@digium.com>
Wed, 3 Feb 2016 21:13:08 +0000 (15:13 -0600)
commitf233bcd81d85626ce5bdd27b05bc95d131faf3e4
tree486c4fcab445752f6b2ae9dcfcab9d7fe6567e6atree
parente6c4a926c2e83aa86b6a21db74493bd1fde2443ecommit | diff
AST-2016-001 http: Provide greater control of TLS and set modern defaults.

This change exposes the configuration of various aspects of the TLS
support and sets the default to the modern standards.

The TLS cipher is now set to the best values according to the
Mozilla OpSec team, different TLS versions can now be disabled, and
the cipher order can be forced to be that of the server instead of
the client.

ASTERISK-24972 #close

Change-Id: I7485bc48585979a93a131b01d435e54e6e7d5b97
configs/http.conf.sample diff | blob | blame | history
include/asterisk/tcptls.h diff | blob | blame | history
main/http.c diff | blob | blame | history
main/tcptls.c diff | blob | blame | history
Mirror of https://github.com/asterisk/asterisk.git