Disable RC4 by default in the library

commit: 849b174e5709aef3795ad6a13835aaa9c4df3217 [log] [tgz]
author: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Fri Mar 20 19:13:22 2015 +0000
committer: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Fri Mar 20 19:14:19 2015 +0000
tree: d0217d04c4267f04b0368962ac07fbd618f7b438
parent: 391af97a71464bc61d86c5d93a65ef5d8fdc12bd [diff] [blame]
diff --git a/include/mbedtls/ssl.h b/include/mbedtls/ssl.h
index 04388b2..5ce118c 100644
--- a/include/mbedtls/ssl.h
+++ b/include/mbedtls/ssl.h

@@ -1784,10 +1784,10 @@
 
 /**
  * \brief          Disable or enable support for RC4
- *                 (Default: SSL_ARC4_ENABLED)
+ *                 (Default: SSL_ARC4_DISABLED)
  *
- * \note           Though the default is RC4 for compatibility reasons in the
- *                 1.3 branch, the recommended value is SSL_ARC4_DISABLED.
+ * \warning        Use of RC4 in (D)TLS has been prohibited by RFC ????
+ *                 for security reasons. Use at your own risks.
  *
  * \note           This function will likely be removed in future versions as
  *                 RC4 will then be disabled by default at compile time.
commit	849b174e5709aef3795ad6a13835aaa9c4df3217	[log] [tgz]
author	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Fri Mar 20 19:13:22 2015 +0000
committer	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Fri Mar 20 19:14:19 2015 +0000
tree	d0217d04c4267f04b0368962ac07fbd618f7b438
parent	391af97a71464bc61d86c5d93a65ef5d8fdc12bd [diff] [blame]