use the node.js default cipher suite for setting up a tls server instead of specifying our own
This commit is contained in:
parent
a1b75c14c6
commit
2984688a6d
|
@ -59,8 +59,6 @@ Service.prototype._readHttpsOptions = function() {
|
|||
var serverOpts = {};
|
||||
serverOpts.key = fs.readFileSync(this.httpsOptions.key);
|
||||
serverOpts.cert = fs.readFileSync(this.httpsOptions.cert);
|
||||
serverOpts.ciphers = 'ECDHE-RSA-AES256-SHA:AES256-SHA:RC4-SHA:RC4:HIGH:!MD5:!aNULL:!EDH:!AESGCM';
|
||||
serverOpts.honorCipherOrder = true;
|
||||
|
||||
// This sets the intermediate CA certs only if they have all been designated in the config.js
|
||||
if (this.httpsOptions.CAinter1 && this.httpsOptions.CAinter2 && this.httpsOptions.CAroot) {
|
||||
|
|
3
bws.js
3
bws.js
|
@ -27,8 +27,7 @@ var serverOpts = {};
|
|||
if (config.https) {
|
||||
serverOpts.key = fs.readFileSync(config.privateKeyFile || './ssl/privatekey.pem');
|
||||
serverOpts.cert = fs.readFileSync(config.certificateFile || './ssl/certificate.pem');
|
||||
serverOpts.ciphers = 'ECDHE-RSA-AES256-SHA:AES256-SHA:RC4-SHA:RC4:HIGH:!MD5:!aNULL:!EDH:!AESGCM';
|
||||
serverOpts.honorCipherOrder = true;
|
||||
|
||||
// This sets the intermediate CA certs only if they have all been designated in the config.js
|
||||
if (config.CAinter1 && config.CAinter2 && config.CAroot) {
|
||||
serverOpts.ca = [fs.readFileSync(config.CAinter1),
|
||||
|
|
Loading…
Reference in New Issue