tmakinen/puppet
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

puppet: Remove old hard coded and dangerous cipher suite from puppet::server::passenger class.

Browse source
This commit is contained in:
Timo Makinen 2016-03-08 11:09:15 +02:00
parent f9b2b7bca3
commit 85d1973f5f
1 changed files with 3 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

5
puppet/templates/passenger-httpd.conf.erb
View file

@ -21,8 +21,9 @@ Listen 8140
# SSL settings # SSL settings
SSLEngine on SSLEngine on
SSLProtocol TLSv1 SSLProtocol all -SSLv2 -SSLv3
SSLCipherSuite DHE-RSA-AES256-SHA SSLHonorCipherOrder On
SSLCipherSuite <%= scope.lookupvar('ssl::ciphersuites::default_ciphersuites') %>
# Certificates and keys # Certificates and keys
SSLCertificateFile <%= @puppet_ssldir %>/certs/<%= @homename %>.pem SSLCertificateFile <%= @puppet_ssldir %>/certs/<%= @homename %>.pem