Blame SOURCES/0041-Document-the-new-default-for-ssl_ciphers-in-the-man-.patch

90e381
From 2369d1ea5144d525d315aba90da528e7d9bfd1cc Mon Sep 17 00:00:00 2001
90e381
From: =?UTF-8?q?Ond=C5=99ej=20Lyson=C4=9Bk?= <olysonek@redhat.com>
90e381
Date: Thu, 21 Dec 2017 14:19:18 +0100
90e381
Subject: [PATCH 41/59] Document the new default for ssl_ciphers in the man
90e381
 page
90e381
90e381
Related: rhbz#1483970
90e381
---
90e381
 vsftpd.conf.5 | 6 +++++-
90e381
 1 file changed, 5 insertions(+), 1 deletion(-)
90e381
90e381
diff --git a/vsftpd.conf.5 b/vsftpd.conf.5
90e381
index 3ca55e4..2a7662e 100644
90e381
--- a/vsftpd.conf.5
90e381
+++ b/vsftpd.conf.5
90e381
@@ -1078,7 +1078,11 @@ man page for further details. Note that restricting ciphers can be a useful
90e381
 security precaution as it prevents malicious remote parties forcing a cipher
90e381
 which they have found problems with.
90e381
 
90e381
-Default: AES128-SHA:DES-CBC3-SHA:DHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384
90e381
+By default, the system-wide crypto policy is used. See
90e381
+.BR update-crypto-policies(8)
90e381
+for further details.
90e381
+
90e381
+Default: PROFILE=SYSTEM
90e381
 .TP
90e381
 .B user_config_dir
90e381
 This powerful option allows the override of any config option specified in
90e381
-- 
90e381
2.14.4
90e381