From 7bf827fb52568699c3932ba2b1b61727edf77552 Mon Sep 17 00:00:00 2001
From: Gregory Norton <gregnorton@gmail.com>
Date: Wed, 31 Dec 2014 11:19:07 -0600
Subject: [PATCH] Modified cipher list used for SSL.

Existing cipher list was insecure, specifying RC4 first followed by AES
New list h/t: http://skytale.net/blog/archives/22-SSL-cipher-setting.html.
---
 src/Mayaqua/Network.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Mayaqua/Network.c b/src/Mayaqua/Network.c
index 26dfd11e..dabaf993 100644
--- a/src/Mayaqua/Network.c
+++ b/src/Mayaqua/Network.c
@@ -233,7 +233,7 @@ static COUNTER *getip_thread_counter = NULL;
 static UINT max_getip_thread = 0;
 
 
-static char *cipher_list = "RC4-MD5 RC4-SHA AES128-SHA AES256-SHA DES-CBC-SHA DES-CBC3-SHA DHE-RSA-AES128-SHA DHE-RSA-AES256-SHA";
+static char *cipher_list = "TLSv1+HIGH:!SSLv2:RC4+MEDIUM:!aNULL:!eNULL:!3DES:@STRENGTH";
 static LIST *ip_clients = NULL;
 
 static LIST *local_mac_list = NULL;