]> git.ipfire.org Git - thirdparty/asterisk.git/commit
projects / thirdparty / asterisk.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b5fb4f7) | patch
AST-2016-001 http: Provide greater control of TLS and set modern defaults. 61/2161/3
authorJoshua Colp <jcolp@digium.com>
Wed, 3 Feb 2016 18:04:51 +0000 (14:04 -0400)
committerKevin Harwell <kharwell@digium.com>
Wed, 3 Feb 2016 21:11:58 +0000 (15:11 -0600)
commit1ae95cdef385691fc71fa8cc005d937dfe6f2567
tree047ab697ba8e549da92fe93cf63e1d80d1d33202tree
parentb5fb4f7e8909ff63911ba6b088faba2db1859daccommit | diff
AST-2016-001 http: Provide greater control of TLS and set modern defaults.

This change exposes the configuration of various aspects of the TLS
support and sets the default to the modern standards.

The TLS cipher is now set to the best values according to the
Mozilla OpSec team, different TLS versions can now be disabled, and
the cipher order can be forced to be that of the server instead of
the client.

ASTERISK-24972 #close

Change-Id: I18b74a4830729896cdedc85324bf4c1ac1df29ba
configs/http.conf.sample diff | blob | blame | history
include/asterisk/tcptls.h diff | blob | blame | history
main/http.c diff | blob | blame | history
main/tcptls.c diff | blob | blame | history
Mirror of https://github.com/asterisk/asterisk.git