vendor/openssl/1.0.2h

author: Jung-uk Kim <jkim@FreeBSD.org> 2016-05-03 18:00:27 +0000
committer: Jung-uk Kim <jkim@FreeBSD.org> 2016-05-03 18:00:27 +0000
commit: 57f1256b1a087adbdf8e5c080dd9ed7975de939a (patch)
tree: 2dd85c58056a364765d9ae59d6a1774d41f88523 /ssl/ssl.h
parent: 9aeed18ad799c20d3accf6e1535817538dc983f6 (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/ssl/ssl.h b/ssl/ssl.h
index 04d4007eeb8e..5ef56faa5099 100644
--- a/ssl/ssl.h
+++ b/ssl/ssl.h
@@ -338,7 +338,7 @@ extern "C" {
  * The following cipher list is used by default. It also is substituted when
  * an application-defined cipher list string starts with 'DEFAULT'.
  */
-# define SSL_DEFAULT_CIPHER_LIST "ALL:!EXPORT:!aNULL:!eNULL:!SSLv2"
+# define SSL_DEFAULT_CIPHER_LIST "ALL:!EXPORT:!LOW:!aNULL:!eNULL:!SSLv2"
 /*
  * As of OpenSSL 1.0.0, ssl_create_cipher_list() in ssl/ssl_ciph.c always
  * starts with a reasonable order, and all we have to do for DEFAULT is
@@ -2345,7 +2345,7 @@ const char *SSL_get_version(const SSL *s);
 /* This sets the 'default' SSL version that SSL_new() will create */
 int SSL_CTX_set_ssl_version(SSL_CTX *ctx, const SSL_METHOD *meth);
 
-# ifndef OPENSSL_NO_SSL2
+# ifndef OPENSSL_NO_SSL2_METHOD
 const SSL_METHOD *SSLv2_method(void); /* SSLv2 */
 const SSL_METHOD *SSLv2_server_method(void); /* SSLv2 */
 const SSL_METHOD *SSLv2_client_method(void); /* SSLv2 */
author	Jung-uk Kim <jkim@FreeBSD.org>	2016-05-03 18:00:27 +0000
committer	Jung-uk Kim <jkim@FreeBSD.org>	2016-05-03 18:00:27 +0000
commit	57f1256b1a087adbdf8e5c080dd9ed7975de939a (patch)
tree	2dd85c58056a364765d9ae59d6a1774d41f88523 /ssl/ssl.h
parent	9aeed18ad799c20d3accf6e1535817538dc983f6 (diff)