From 9d9e0535366b4e5cfb2eb4d74be6b3d546b98fe8 Mon Sep 17 00:00:00 2001 From: Vitezslav Cizek Date: Mon, 10 Oct 2016 16:41:57 +0200 Subject: [PATCH] Degrade 3DES to MEDIUM in SSL2 The SWEET32 fix moved 3DES from HIGH to MEDIUM, but omitted SSL2. CLA: trivial Reviewed-by: Kurt Roeckx Reviewed-by: Matt Caswell Reviewed-by: Rich Salz (Merged from https://github.com/openssl/openssl/pull/1683) (cherry picked from commit 6d69dc56de8f0535be9ccabea7a8d4e61c04c2f1) --- ssl/s2_lib.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/ssl/s2_lib.c b/ssl/s2_lib.c index 7bcb81a11e..0322dc8136 100644 --- a/ssl/s2_lib.c +++ b/ssl/s2_lib.c @@ -254,7 +254,7 @@ OPENSSL_GLOBAL const SSL_CIPHER ssl2_ciphers[] = { SSL_3DES, SSL_MD5, SSL_SSLV2, - SSL_NOT_DEFAULT | SSL_NOT_EXP | SSL_HIGH, + SSL_NOT_DEFAULT | SSL_NOT_EXP | SSL_MEDIUM, 0, 112, 168, -- 2.25.1