native SSL support - disable insecure encryption ciphers
Posted: Monday 24 October 2016 12:54
Hi to all,
did anyone already try to disable insecure encryption ciphers on the native SSL support in Domoticz?
Background:
I've scanned my local Domoticz with the SSLLabs SSL Server Test and it came to surface, that the rather insecure RC4 ciphers are still negotiated towards the client device/
I'd rather disable them in the native support than setting up a reverse proxy on nginx if possible without huge code change.
did anyone already try to disable insecure encryption ciphers on the native SSL support in Domoticz?
Background:
I've scanned my local Domoticz with the SSLLabs SSL Server Test and it came to surface, that the rather insecure RC4 ciphers are still negotiated towards the client device/
Code: Select all
TLS_RSA_WITH_RC4_128_MD5 (0x4) INSECURE
TLS_RSA_WITH_RC4_128_SHA (0x5) INSECURE