[rabbitmq-discuss] Restriction to specific ciphers for ssl communications

Emile Joubert emile at rabbitmq.com
Wed Jun 6 18:46:59 BST 2012


Hi Mark,

On 06/06/12 18:23, Mark Dotson wrote:
> log somewhere that X cipher was rejected.  In other words, is the only
> way to really test this to do a full connection test and watch the logs
> go by for cipher rejection or connection messages?

The configured value should constrain the advertised ciphers during
negotiation, so you should be able to determine the effect easily by
observing the advertisement. The amount of testing you perform should be
dictated by the desired level of confidence.

-Emile




More information about the rabbitmq-discuss mailing list