]> git.ipfire.org Git - thirdparty/pdns.git/commit
projects / thirdparty / pdns.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f6f641e) | patch
dnsdist: Prefer the cipher suite from the server by default (DoH, DoT) 8526/head
authorRemi Gacogne <remi.gacogne@powerdns.com>
Tue, 12 Nov 2019 13:24:30 +0000 (14:24 +0100)
committerRemi Gacogne <remi.gacogne@powerdns.com>
Tue, 12 Nov 2019 13:24:30 +0000 (14:24 +0100)
commit12543371924e887e41b3a396e6a850a919cb40ca
treee9bf8df8c5489d10ddd22a81d4cce7d3937b6ac4tree
parentf6f641e8442c6f20f79460e84c0888359ba4354fcommit | diff
dnsdist: Prefer the cipher suite from the server by default (DoH, DoT)

This setting should only be set when all ciphers offered by the server
are considered secure, and our default suite still has a few options
offered for compatibility reasons, which might not be as secure as
other alternatives.
Apparently this also causes issue for some clients, even though it
should not matter.
pdns/dnsdistdist/docs/reference/config.rst diff | blob | blame | history
pdns/libssl.hh diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.