Merge lp:~sergiodj/midori/safe-ciphers into lp:midori
Status: | Needs review |
---|---|
Proposed branch: | lp:~sergiodj/midori/safe-ciphers |
Merge into: | lp:midori |
Diff against target: |
15 lines (+5/-0) 1 file modified
midori/main.c (+5/-0) |
To merge this branch: | bzr merge lp:~sergiodj/midori/safe-ciphers |
Related bugs: |
Reviewer | Review Type | Date Requested | Status |
---|---|---|---|
Cris Dywan | Pending | ||
Review via email: mp+277914@code.launchpad.net |
Commit message
Improve security by making sure that we use a safe set of ciphers.
This comes from Debian bug #804196 (LP Bug #1517265). When Midori
uses libwebkitgtk, it inherits the default value of the
G_TLS_GNUTLS_
is not safe enough because it still lets GnuTLS to enable to unsafe
ciphers. Therefore, we need to set this variable ourselves and make
sure that Midori is using safe ciphers for TLS operations.
Description of the change
Improve security by making sure that we use a safe set of ciphers.
This comes from Debian bug #804196 (LP Bug #1517265). When Midori
uses libwebkitgtk, it inherits the default value of the
G_TLS_GNUTLS_
is not safe enough because it still lets GnuTLS to enable to unsafe
ciphers. Therefore, we need to set this variable ourselves and make
sure that Midori is using safe ciphers for TLS operations.
Unmerged revisions
- 7058. By Sergio Durigan Junior
-
Improve security by making sure that we use a safe set of ciphers.
This comes from Debian bug #804196 (LP Bug #1517265). When Midori
uses libwebkitgtk, it inherits the default value of the
G_TLS_GNUTLS_PRIORITY environment variable. Unfortunately this value
is not safe enough because it still lets GnuTLS to enable to unsafe
ciphers. Therefore, we need to set this variable ourselves and make
sure that Midori is using safe ciphers for TLS operations.