[Asterisk-code-review] AST-2016-001 http: Provide greater control of TLS and set mo... (asterisk[certified/11.6])
Kevin Harwell
asteriskteam at digium.com
Wed Feb 3 15:11:58 CST 2016
Hello Joshua Colp,
I'd like you to reexamine a change. Please visit
https://gerrit.asterisk.org/2161
to look at the new patch set (#3).
Change subject: AST-2016-001 http: Provide greater control of TLS and set modern defaults.
......................................................................
AST-2016-001 http: Provide greater control of TLS and set modern defaults.
This change exposes the configuration of various aspects of the TLS
support and sets the default to the modern standards.
The TLS cipher is now set to the best values according to the
Mozilla OpSec team, different TLS versions can now be disabled, and
the cipher order can be forced to be that of the server instead of
the client.
ASTERISK-24972 #close
Change-Id: I18b74a4830729896cdedc85324bf4c1ac1df29ba
---
M configs/http.conf.sample
M include/asterisk/tcptls.h
M main/http.c
M main/tcptls.c
4 files changed, 61 insertions(+), 9 deletions(-)
git pull ssh://gerrit.asterisk.org:29418/asterisk refs/changes/61/2161/3
--
To view, visit https://gerrit.asterisk.org/2161
To unsubscribe, visit https://gerrit.asterisk.org/settings
Gerrit-MessageType: newpatchset
Gerrit-Change-Id: I18b74a4830729896cdedc85324bf4c1ac1df29ba
Gerrit-PatchSet: 3
Gerrit-Project: asterisk
Gerrit-Branch: certified/11.6
Gerrit-Owner: Joshua Colp <jcolp at digium.com>
Gerrit-Reviewer: Anonymous Coward #1000019
Gerrit-Reviewer: Joshua Colp <jcolp at digium.com>
Gerrit-Reviewer: Kevin Harwell <kharwell at digium.com>
More information about the asterisk-code-review
mailing list