couchdb-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From terinjokes <...@git.apache.org>
Subject [GitHub] couchdb pull request: Initial support for user configurable SSL ci...
Date Sat, 19 Apr 2014 04:02:34 GMT
GitHub user terinjokes opened a pull request:

    https://github.com/apache/couchdb/pull/213

    Initial support for user configurable SSL ciphers

    Adds user configuration for the following Erlang SSL settings:
    
    * secure_renegotiate (default = false)
    * ciphers (default = whatever that version of Erlang decides)
    
    This is useful immediately because Erlang less than R16B03-1 has incorrectly implements
handshaking with elliptic curves, causing hard to debug SSL errors in recent versions of Chrome,
Safari, Firefox, curl and go (in a very incomplete list).
    
    It also allow administrators to change the priorities of ciphers for their installation
or remove ciphers in the wake of attacks.

You can merge this pull request into a Git repository by running:

    $ git pull https://github.com/terinjokes/couchdb httpd_ssl

Alternatively you can review and apply these changes as the patch at:

    https://github.com/apache/couchdb/pull/213.patch

To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:

    This closes #213
    
----
commit c61212fb044f86d881c6b3ae47eb0e502b3ecefc
Author: Terin Stock <terinjokes@gmail.com>
Date:   2014-04-19T03:48:46Z

    Initial support for user configurable SSL ciphers

----


---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at infrastructure@apache.org or file a JIRA ticket
with INFRA.
---

Mime
View raw message