sstp: keep default ssl ciphers for better compatibility

b75f1663 · Vladislav Grishenko · 004ff247 · b75f1663 · b75f1663
隐藏空白更改
内联并排

Showing with 2 addition and 2 deletion

accel-pppd/accel-ppp.conf accel-pppd/accel-ppp.conf +1 -1

accel-pppd/ctrl/sstp/sstp.c accel-pppd/ctrl/sstp/sstp.c +1 -1

未找到文件。
--- a/accel-pppd/accel-ppp.conf
+++ b/accel-pppd/accel-ppp.conf
@@ -114,7 +114,7 @@ verbose=1
 #cert-hash-sha1=
 #cert-hash-sha256=
 #ssl=1
-#ssl-ciphers=HIGH:!aNULL:!kRSA:!PSK:!SRP:!MD5:!RC4
+#ssl-ciphers=DEFAULT
 #ssl-prefer-server-ciphers=0
 #ssl-ca-file=/etc/ssl/sstp-ca.crt
 #ssl-pemfile=/etc/ssl/sstp.pem

--- a/accel-pppd/ctrl/sstp/sstp.c
+++ b/accel-pppd/ctrl/sstp/sstp.c
@@ -170,7 +170,7 @@ static X509 *conf_ssl_cert = NULL;
 static EVP_PKEY *conf_ssl_pkey = NULL;

 static const char *conf_ssl_ca_file = NULL;
-static const char *conf_ssl_ciphers = "HIGH:!aNULL:!kRSA:!PSK:!SRP:!MD5:!RC4";
+static const char *conf_ssl_ciphers = NULL;
 static int conf_ssl_prefer_server_ciphers = 0;
 static int conf_ssl = 1;
 #endif