changeset 2246:3d266140a8fb

Add ssl_ciphers and ssl_ca option in mcabberrc.example
author franky
date Wed, 10 Feb 2016 23:08:44 +0100
parents bcb7bfa1cd09
children fe89cdd66446
files mcabber/mcabberrc.example
diffstat 1 files changed, 9 insertions(+), 0 deletions(-) [+]
line wrap: on
line diff
--- a/mcabber/mcabberrc.example	Thu Feb 04 18:43:57 2016 +0100
+++ b/mcabber/mcabberrc.example	Wed Feb 10 23:08:44 2016 +0100
@@ -48,6 +48,15 @@
 # ssl to 1.  It's not possible to use old-style SSL and TLS together.
 #set ssl = 0
 set tls = 1
+# It is possible to set the allowed ciphers which openssl/gnutls can use for
+# the encrypted connection.
+# openssl (get the name of the available ciphers via 'openssl ciphers'):
+#set ssl_ciphers = ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384
+# gnutls (check the priorities option of 'man gnutls_priority_init'):
+#set ssl_ciphers = PFS
+# If you'd like to explicitly specify trusted certificates, set the ssl_ca
+# option to a certificate file or path.
+#set ssl_ca = ~/.mcabber/trusted_cert.pem
 # Moreover, it's possible to check whether the fingerprint of the
 # ssl certificate matches ssl_fingerprint.
 # You can get the fingerprint of your server either with gnutls or openssl: