Changes to SSL Usage/Config
- From:
- Zed A. Shaw
- Date:
- 2011-06-04 @ 21:39
I just pushed changes to how SSL is configured. Basically you can now
do:
Server(
....
use_ssl=1
)
settings = {
"certdir": "certs/",
"ssl_ciphers": "SSL_RSA_AES_256_SHA SSL_EDH_RSA_AES_256_SHA"
}
And that will use the SSL certs in "CHROOT/certs/". To create a cert
you do the usual openssl crap of making the .crt and the .key, then put
them in certs/ based on the uuid:
$ ls certs/
2f62bd5-9e59-49cd-993c-3b6013c28f05.crt
2f62bd5-9e59-49cd-993c-3b6013c28f05.key
I also changed how you set specific ciphers. Set ssl_ciphers setting to
the list of ones you want separated by a *space* (not a comman).
This is on the develop branch right now, so if you do:
git pull origin develop
git checkout develop
You can try it. Let me know if that works.
--
Zed A. Shaw
http://zedshaw.com/