Skip to content

Commit 504272c

Browse files
n4ssn4ss
committed
Remove TLS_RSA ciphers from the default accepted ciphers - weak & triggers scanning warnings
Signed-off-by: Nassim 'Nass' Eddequiouaq <[email protected]>
1 parent 7beb39f commit 504272c

File tree

1 file changed

+0
-2
lines changed

1 file changed

+0
-2
lines changed

tlsconfig/config.go

Lines changed: 0 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -46,8 +46,6 @@ var acceptedCBCCiphers = []uint16{
4646
tls.TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA,
4747
tls.TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,
4848
tls.TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,
49-
tls.TLS_RSA_WITH_AES_256_CBC_SHA,
50-
tls.TLS_RSA_WITH_AES_128_CBC_SHA,
5149
}
5250

5351
// DefaultServerAcceptedCiphers should be uses by code which already has a crypto/tls

0 commit comments

Comments
 (0)