]> git.proxmox.com Git - pve-manager.git/commit
projects / pve-manager.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 08801a5) | patch
Enable TLS 1.1 and 1.2, change default DH params
authorFabian Grünbichler <f.gruenbichler@proxmox.com>
Tue, 26 Jan 2016 14:09:11 +0000 (15:09 +0100)
committerDietmar Maurer <dietmar@proxmox.com>
Tue, 26 Jan 2016 15:42:53 +0000 (16:42 +0100)
commitee0b96b15f9d84d8cff57584dcb735a4102e7248
treeda41347131746c92208042562b9544b1a60fed04tree
parent08801a5d0161b5e379a6cb69293faff418c2da10commit | diff
Enable TLS 1.1 and 1.2, change default DH params

AnyEvent uses a built-in DH group defined as 'schmorp1539'
by default, which seems to trigger the bug in [1] for every
attempt of accessing the web GUI using IE11 and TLS1.2. By
switching to a bigger default DH group ('skip2048'), the
bug seems to be gone (or trigger sufficiently rarely).

1: http://engineering.imvu.com/2015/01/27/the-case-of-the-page-cant-be-displayed-intermittent-selenium-test/
Signed-off-by: Fabian Grünbichler <f.gruenbichler@proxmox.com>
PVE/Service/pveproxy.pm diff | blob | blame | history
The Proxmox VE Management API and Web UI