netty5

History

Graham Edgecombe e7ad9fed77 Use Triple DES in JdkSslContext cipher suite list. Motivation: JdkSslContext used SSL_RSA_WITH_DES_CBC_SHA in its cipher suite list. OpenSslServerContext used DES-CBC3-SHA in the same place in its cipher suite list, which is equivalent to SSL_RSA_WITH_3DES_EDE_CBC_SHA. This means the lists were out of sync. Furthermore, using SSL_RSA_WITH_DES_CBC_SHA is not desirable as it uses DES, a weak cipher. Triple DES should be used instead. Modifications: Replace SSL_RSA_WITH_DES_CBC_SHA with SSL_RSA_WITH_3DES_EDE_CBC_SHA in JdkSslContext. Result: The JdkSslContext and OpenSslServerContext cipher suite lists are now in sync. Triple DES is used instead of DES, which is stronger.	2014-11-27 08:15:47 +01:00
..
src	Use Triple DES in JdkSslContext cipher suite list.	2014-11-27 08:15:47 +01:00
pom.xml	Backport ALPN and Mutual Auth SSL	2014-10-31 14:15:12 +09:00

Graham Edgecombe e7ad9fed77 Use Triple DES in JdkSslContext cipher suite list.

Motivation:

JdkSslContext used SSL_RSA_WITH_DES_CBC_SHA in its cipher suite list.
OpenSslServerContext used DES-CBC3-SHA in the same place in its cipher suite
list, which is equivalent to SSL_RSA_WITH_3DES_EDE_CBC_SHA.

This means the lists were out of sync. Furthermore, using
SSL_RSA_WITH_DES_CBC_SHA is not desirable as it uses DES, a weak cipher. Triple
DES should be used instead.

Modifications:

Replace SSL_RSA_WITH_DES_CBC_SHA with SSL_RSA_WITH_3DES_EDE_CBC_SHA in
JdkSslContext.

Result:

The JdkSslContext and OpenSslServerContext cipher suite lists are now in sync.
Triple DES is used instead of DES, which is stronger.

2014-11-27 08:15:47 +01:00

src

Use Triple DES in JdkSslContext cipher suite list.

2014-11-27 08:15:47 +01:00

pom.xml

Backport ALPN and Mutual Auth SSL

2014-10-31 14:15:12 +09:00