lukechilds
/
bitcore-wallet-service
mirror of https://github.com/lukechilds/bitcore-wallet-service.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

use the node.js default cipher suite for setting up a tls server instead of specifying our own

activeAddress
Gabe Gattis 9 years ago
parent
a1b75c14c6
commit
2984688a6d
No known key found for this signature in database GPG Key ID: 441430987182732C
2 changed files with 1 additions and 4 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 2
      bitcorenode/index.js
  2. 3
      bws.js

2
bitcorenode/index.js
View File

@ -59,8 +59,6 @@ Service.prototype._readHttpsOptions = function() {
var serverOpts = {}; var serverOpts = {};
serverOpts.key = fs.readFileSync(this.httpsOptions.key); serverOpts.key = fs.readFileSync(this.httpsOptions.key);
serverOpts.cert = fs.readFileSync(this.httpsOptions.cert); serverOpts.cert = fs.readFileSync(this.httpsOptions.cert);
serverOpts.ciphers = 'ECDHE-RSA-AES256-SHA:AES256-SHA:RC4-SHA:RC4:HIGH:!MD5:!aNULL:!EDH:!AESGCM';
serverOpts.honorCipherOrder = true;
// This sets the intermediate CA certs only if they have all been designated in the config.js // This sets the intermediate CA certs only if they have all been designated in the config.js
if (this.httpsOptions.CAinter1 && this.httpsOptions.CAinter2 && this.httpsOptions.CAroot) { if (this.httpsOptions.CAinter1 && this.httpsOptions.CAinter2 && this.httpsOptions.CAroot) {

3
bws.js
View File

@ -27,8 +27,7 @@ var serverOpts = {};
if (config.https) { if (config.https) {
serverOpts.key = fs.readFileSync(config.privateKeyFile || './ssl/privatekey.pem'); serverOpts.key = fs.readFileSync(config.privateKeyFile || './ssl/privatekey.pem');
serverOpts.cert = fs.readFileSync(config.certificateFile || './ssl/certificate.pem'); serverOpts.cert = fs.readFileSync(config.certificateFile || './ssl/certificate.pem');
serverOpts.ciphers = 'ECDHE-RSA-AES256-SHA:AES256-SHA:RC4-SHA:RC4:HIGH:!MD5:!aNULL:!EDH:!AESGCM';
serverOpts.honorCipherOrder = true;
// This sets the intermediate CA certs only if they have all been designated in the config.js // This sets the intermediate CA certs only if they have all been designated in the config.js
if (config.CAinter1 && config.CAinter2 && config.CAroot) { if (config.CAinter1 && config.CAinter2 && config.CAroot) {
serverOpts.ca = [fs.readFileSync(config.CAinter1), serverOpts.ca = [fs.readFileSync(config.CAinter1),

Write Preview
Loading…
Cancel
Save