]> git.ipfire.org Git - thirdparty/asterisk.git/commit
projects / thirdparty / asterisk.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7d581b3) | patch
AST-2016-001 http: Provide greater control of TLS and set modern defaults. 64/2164/3
authorJoshua Colp <jcolp@digium.com>
Wed, 3 Feb 2016 18:05:52 +0000 (14:05 -0400)
committerKevin Harwell <kharwell@digium.com>
Wed, 3 Feb 2016 21:10:59 +0000 (15:10 -0600)
commitb50d5840225e5d86243cfe08176fa603a454f5d3
tree6d96cd4d4bc1f58b45300d8611a4b04a4c8c749ctree
parent7d581b32e982eb45f3164e538fc043f1fe71807ccommit | diff
AST-2016-001 http: Provide greater control of TLS and set modern defaults.

This change exposes the configuration of various aspects of the TLS
support and sets the default to the modern standards.

The TLS cipher is now set to the best values according to the
Mozilla OpSec team, different TLS versions can now be disabled, and
the cipher order can be forced to be that of the server instead of
the client.

ASTERISK-24972 #close

Change-Id: I8635470e722ce6d47951a5045ae9ef348271d395
configs/samples/http.conf.sample diff | blob | blame | history
include/asterisk/tcptls.h diff | blob | blame | history
main/http.c diff | blob | blame | history
main/tcptls.c diff | blob | blame | history
Mirror of https://github.com/asterisk/asterisk.git