| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
| |
network. Also, although obsolete, SSLv3 isn't documented to have any weaknesses that TLS 1.0 (the most common version used today) doesn't also have. Get your act together clients!
|
|
|
|
| |
cipher strength and to disable triple-DES (weaker and much slower than AES)
|
|
|
|
| |
of the array
|
|
|
|
| |
default, as clients have been shown to commonly select weak and insecure ciphers even when they support stronger ones
|
| |
|
| |
|
|
|
|
| |
instead of a callback
|
|
|
|
| |
to not honour the 'ciphers' option. This change will apply 0.9's default cipher string for LuaSec 0.4.1 users.
|
| |
|
|
|
|
| |
regarded as 'HIGH' strength (by OpenSSL). In particular this disables RC4.
|
| |
|
| |
|
| |
|
|
|
|
| |
0.4.1+OpenSSL 1.x)
|
| |
|
| |
|
| |
|
|
|
|
| |
environment instead. Fixes warnings about non-existent globals
|
|
|
|
| |
inherits items from a globally set set, if set
|
|
|
|
| |
given host (or global). module:context("*"):get_option("foo") to get global options.
|
|
|
|
| |
is unsupported.
|
|
|
|
| |
module by default
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
|
|
| |
ssl config and / or overrides.
|
| |
|
|
|
|
| |
add has_{feature/identity} to the API.
|
| |
|
|
|
|
| |
entity.
|
| |
|
| |
|
| |
|
| |
|
|
|
|
| |
section-related code.
|
| |
|
| |
|
|
|
|
| |
s2smanager.make_authenticated() to mod_s2s, and plugins now signal authentication via the s2s-authenticated event
|
|
|
|
| |
dynamic host loaders
|
| |
|
|
|
|
| |
section-related code, and the infamous 'core' section. Still backwards-compatible with API users.
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|