From bbd672e829df642281f0d4a39f40f10d54898e96 Mon Sep 17 00:00:00 2001 From: Gregory Norton Date: Sun, 7 Dec 2014 11:15:55 -0600 Subject: [PATCH 1/2] Initial revision. Project did not have .gitignore file previously. --- .gitignore | 4 ++++ 1 file changed, 4 insertions(+) create mode 100644 .gitignore diff --git a/.gitignore b/.gitignore new file mode 100644 index 00000000..1ddc1f0c --- /dev/null +++ b/.gitignore @@ -0,0 +1,4 @@ +bin/* +tmp/* +src/bin/BuiltHamcoreFiles/* +Makefile From 7bf827fb52568699c3932ba2b1b61727edf77552 Mon Sep 17 00:00:00 2001 From: Gregory Norton Date: Wed, 31 Dec 2014 11:19:07 -0600 Subject: [PATCH 2/2] Modified cipher list used for SSL. Existing cipher list was insecure, specifying RC4 first followed by AES New list h/t: http://skytale.net/blog/archives/22-SSL-cipher-setting.html. --- src/Mayaqua/Network.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/Mayaqua/Network.c b/src/Mayaqua/Network.c index 26dfd11e..dabaf993 100644 --- a/src/Mayaqua/Network.c +++ b/src/Mayaqua/Network.c @@ -233,7 +233,7 @@ static COUNTER *getip_thread_counter = NULL; static UINT max_getip_thread = 0; -static char *cipher_list = "RC4-MD5 RC4-SHA AES128-SHA AES256-SHA DES-CBC-SHA DES-CBC3-SHA DHE-RSA-AES128-SHA DHE-RSA-AES256-SHA"; +static char *cipher_list = "TLSv1+HIGH:!SSLv2:RC4+MEDIUM:!aNULL:!eNULL:!3DES:@STRENGTH"; static LIST *ip_clients = NULL; static LIST *local_mac_list = NULL;