[pve-devel] [PATCH docs] Adjust example cipher string in doc for default
Rhonda D'Vine
rhonda at proxmox.com
Mon Oct 15 15:01:08 CEST 2018
Even though this is meant as an example, it makes sense to keep it in
sync with what the actual default is.
Signed-off-by: Rhonda D'Vine <rhonda at proxmox.com>
---
pveproxy.adoc | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/pveproxy.adoc b/pveproxy.adoc
index fbb7394..251e98e 100644
--- a/pveproxy.adoc
+++ b/pveproxy.adoc
@@ -64,7 +64,7 @@ SSL Cipher Suite
You can define the cipher list in `/etc/default/pveproxy`, for example
- CIPHERS="HIGH:MEDIUM:!aNULL:!MD5"
+ CIPHERS="ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256"
Above is the default. See the ciphers(1) man page from the openssl
package for a list of all available options.
--
2.11.0
More information about the pve-devel
mailing list