On 23 September 2016 at 17:13, Scott Neugroschl <scott_n at xypro.com> wrote: > Hi, > > > > I?m afraid the man page on the conf file is not particularly clear. I?m > looking at mitigating CVE-2016-2183 (SWEET32), and am not sure how to > disable the DES and 3DES suites in the conf file. > > Can someone give me a hand? > > > ?You can't disable them in the openssl config file, you should do it in the cipher suite configuration of the affected application. Cheers Rich. ? -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20160924/d96fe128/attachment.html>
