]> git.ipfire.org Git - thirdparty/gnutls.git/commitdiff
No longer recommend the use of RC4
authorNikos Mavrogiannopoulos <nmav@gnutls.org>
Sat, 24 Aug 2013 20:25:57 +0000 (23:25 +0300)
committerNikos Mavrogiannopoulos <nmav@gnutls.org>
Sat, 24 Aug 2013 20:25:57 +0000 (23:25 +0300)
doc/cha-gtls-app.texi

index 455152918d05b2c09d9120a65db6f0d7a93bcf9f..789dc1c34fb570edcdeb5841c5bafac1b1dd10d5 100644 (file)
@@ -1490,14 +1490,7 @@ another priority string is:
 NORMAL:-VERS-TLS-ALL:+VERS-TLS1.0:+VERS-SSL3.0:%COMPAT
 @end verbatim
 This priority string will in addition to above, only enable SSL 3.0 and 
-TLS 1.0 as protocols. Note however that
-there are known attacks against those protocol versions, especially over
-the CBC-mode ciphersuites. To mitigate them another priority string
-that only allows the stream cipher ARCFOUR is below.
-@verbatim
-NORMAL:-VERS-TLS-ALL:+VERS-TLS1.0:+VERS-SSL3.0:-CIPHER-ALL:+ARCFOUR-128:%COMPAT
-@end verbatim
-
+TLS 1.0 as protocols. 
 
 
 @node Compatibility with the OpenSSL library