diff options
| author | lloyd <[email protected]> | 2015-05-15 02:33:57 +0000 |
|---|---|---|
| committer | lloyd <[email protected]> | 2015-05-15 02:33:57 +0000 |
| commit | 12eea2e817528e7d1a85e5e80b360eead6e5d206 (patch) | |
| tree | 3ec765c23a0a573933da8f53d63d63b8b2e71c74 /src/scripts | |
| parent | 99506e5ba968d30d4015bc72bea8f515bfee8287 (diff) | |
Remove RC4 (and all support for stream ciphers) from TLS
Diffstat (limited to 'src/scripts')
| -rwxr-xr-x | src/scripts/tls_suite_info.py | 8 |
1 files changed, 4 insertions, 4 deletions
diff --git a/src/scripts/tls_suite_info.py b/src/scripts/tls_suite_info.py index c9044084f..8589ddeec 100755 --- a/src/scripts/tls_suite_info.py +++ b/src/scripts/tls_suite_info.py @@ -200,7 +200,7 @@ def main(args = None): if args is None: args = sys.argv - weak_crypto = ['EXPORT', 'RC2', 'IDEA', '_DES_', 'WITH_NULL'] + weak_crypto = ['EXPORT', 'RC2', 'IDEA', 'RC4', '_DES_', 'WITH_NULL'] static_dh = ['ECDH_ECDSA', 'ECDH_RSA', 'DH_DSS', 'DH_RSA'] # not supported protocol_goop = ['SCSV', 'KRB5'] maybe_someday = ['ARIA', 'RSA_PSK'] @@ -245,14 +245,14 @@ def main(args = None): # From http://tools.ietf.org/html/draft-ietf-tls-56-bit-ciphersuites-01 define_custom_ciphersuite('DHE_DSS_WITH_RC4_128_SHA', '0066') - if options.with_chacha and False: + if options.with_chacha: # Google servers - draft-agl-tls-chacha20poly1305-04 define_custom_ciphersuite('ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256', 'CC13') define_custom_ciphersuite('ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256', 'CC14') define_custom_ciphersuite('DHE_RSA_WITH_CHACHA20_POLY1305_SHA256', 'CC15') - if options.with_chacha: - # Provisional IETF ChaCha suites: + if options.with_chacha and False: + # Provisional IETF ChaCha suites define_custom_ciphersuite('RSA_WITH_CHACHA20_POLY1305_SHA256', 'CD30') define_custom_ciphersuite('ECDSA_RSA_WITH_CHACHA20_POLY1305_SHA256', 'CD31') define_custom_ciphersuite('ECDSA_ECDSA_WITH_CHACHA20_POLY1305_SHA256', 'CD32') |