| Ronald Cron | d5d0496 | 2021-04-30 16:42:35 +0200 | [diff] [blame^] | 1 | Remove the configuration to enable weak ciphersuites in SSL / TLS |
| 2 | ----------------------------------------------------------------- |
| 3 | |
| 4 | This does not affect users who use the default `config.h`, as this option was |
| 5 | already off by default. |
| 6 | |
| 7 | If you were using a weak cipher, please switch to any of the modern, |
| 8 | recommended ciphersuites (based on AES-GCM, AES-CCM or ChachaPoly for example) |
| 9 | and if your peer doesn't support any, encourage them to upgrade their software. |
| 10 | |
| 11 | If you were using a ciphersuite without encryption, you just have to |
| 12 | enable MBEDTLS_CIPHER_NULL_CIPHER now. |