blob: fec2849edd85a63003eb9b45da4db07e4003b2e2 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
|
allow_tls10 = false
allow_tls11 = false
allow_tls12 = true
allow_dtls10 = false
allow_dtls12 = false
ciphers = AES-256/GCM AES-128/GCM AES-256 AES-128 AES-256/CCM AES-128/CCM
signature_hashes = SHA-512 SHA-384 SHA-256
macs = AEAD SHA-384 SHA-256
key_exchange_methods = ECDH DH ECDHE_PSK DHE_PSK
signature_methods = ECDSA RSA DSA
key_exchange_groups = brainpool512r1 brainpool384r1 brainpool256r1 secp384r1 secp256r1 ffdhe/ietf/4096 ffdhe/ietf/3072 ffdhe/ietf/2048
minimum_dh_group_size = 2000
minimum_dsa_group_size = 2000
minimum_ecdh_group_size = 250
minimum_ecdsa_group_size = 250
minimum_rsa_bits = 2000
allow_insecure_renegotiation = false
allow_server_initiated_renegotiation = true
server_uses_own_ciphersuite_preferences = true
negotiate_encrypt_then_mac = true
|
