ssl configuration
I understand the secrecy for some of the ssl configuration options, but I'd like to be able to control at minimum the cipher suite, dhparams and TLS minimal version. User interface or allowing configuration overrides don't matter to me. It'll be a setup time configuration and a few adjustments over a year dealing with new discoveries.
As a motivator, I'm currently browsing firefox with Calomel SSL Validator extension, set to 128-bit, PFS and TLS 1.2 only and many sitres, ironically including Mozilla's add-on site, become not available.
2
votes
Melvyn Sopacua
shared this idea