yahns Ruby server user/dev discussion
 help / color / Atom feed
* [PATCH] document SSL::SSL::SSLContext#set_params use
@ 2016-02-29  2:16 Eric Wong
  0 siblings, 0 replies; only message in thread
From: Eric Wong @ 2016-02-29  2:16 UTC (permalink / raw)
  To: yahns-public

I use whatever Ruby developers deem to be reasonable defaults.
Because compatibility with old systems is still valued, these
may not be the safest possible configuration; but ought to be
better than what OpenSSL upstream provides by default.
---
 Documentation/yahns_config.pod | 1 +
 1 file changed, 1 insertion(+)

diff --git a/Documentation/yahns_config.pod b/Documentation/yahns_config.pod
index 3b1f2e4..aadd691 100644
--- a/Documentation/yahns_config.pod
+++ b/Documentation/yahns_config.pod
@@ -446,6 +446,7 @@ An example which seems to work is:
   ssl_ctx.key = OpenSSL::PKey::RSA.new(
     IO.read('/etc/ssl/private/example.key')
   )
+  ssl_ctx.set_params # use defaults provided by Ruby on top of OpenSSL
 
   app(:rack, "/path/to/my/app/config.ru") do
     listen 443, ssl_ctx: ssl_ctx
-- 
EW


^ permalink raw reply	[flat|nested] only message in thread

only message in thread, back to index

Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2016-02-29  2:16 [PATCH] document SSL::SSL::SSLContext#set_params use Eric Wong

yahns Ruby server user/dev discussion

Archives are clonable:
	git clone --mirror https://yhbt.net/yahns-public
	git clone --mirror http://ou63pmih66umazou.onion/yahns-public

Example config snippet for mirrors

Newsgroups are available over NNTP:
	nntp://news.public-inbox.org/inbox.comp.lang.ruby.yahns
	nntp://ou63pmih66umazou.onion/inbox.comp.lang.ruby.yahns

 note: .onion URLs require Tor: https://www.torproject.org/

AGPL code for this site: git clone https://public-inbox.org/ public-inbox