Skip to content

Commit

Permalink
cmd/webhook: add ECDHE_ECDSA ciphers and workaround disabled TLS_FALL…
Browse files Browse the repository at this point in the history 
…BACK_SCSV
  • Loading branch information
@rjeczalik
rjeczalik committed Mar 16, 2015
1 parent 2ac813a commit 1e88188
Showing 1 changed file with 3 additions and 0 deletions.
3 changes: 3 additions & 0 deletions cmd/webhook/main.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -280,8 +280,11 @@ func main() {
Rand: rand.Reader,
// Don't offer SSL3.
MinVersion: tls.VersionTLS10,
MaxVersion: tls.VersionTLS12,
// Don't offer RC4 ciphers.
CipherSuites: []uint16{
tls.TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA,
tls.TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA,
tls.TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA,
tls.TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,
tls.TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,
Expand Down

0 comments on commit 1e88188

Please sign in to comment.