From: Nikos Mavrogiannopoulos Date: Sat, 24 Aug 2013 20:25:57 +0000 (+0300) Subject: No longer recommend the use of RC4 X-Git-Tag: gnutls_3_2_4~26 X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=f493ec544dd5abe81fc4c4cc3fa6875be4207c70;p=thirdparty%2Fgnutls.git No longer recommend the use of RC4 --- diff --git a/doc/cha-gtls-app.texi b/doc/cha-gtls-app.texi index 455152918d..789dc1c34f 100644 --- a/doc/cha-gtls-app.texi +++ b/doc/cha-gtls-app.texi @@ -1490,14 +1490,7 @@ another priority string is: NORMAL:-VERS-TLS-ALL:+VERS-TLS1.0:+VERS-SSL3.0:%COMPAT @end verbatim This priority string will in addition to above, only enable SSL 3.0 and -TLS 1.0 as protocols. Note however that -there are known attacks against those protocol versions, especially over -the CBC-mode ciphersuites. To mitigate them another priority string -that only allows the stream cipher ARCFOUR is below. -@verbatim -NORMAL:-VERS-TLS-ALL:+VERS-TLS1.0:+VERS-SSL3.0:-CIPHER-ALL:+ARCFOUR-128:%COMPAT -@end verbatim - +TLS 1.0 as protocols. @node Compatibility with the OpenSSL library