iarv/znc
1
0
Fork 0
mirror of https://github.com/znc/znc.git synced 2026-05-08 06:14:40 +02:00
Code Issues Packages Projects Releases Wiki Activity

sasl.cpp: don't advertise DH-* as secure

Browse Source 
They were removed from Atheme, because people thought them to be more
secure than PLAIN + SSL, so ZNC shouldn't advertise them as secure.

I think that DH-AES and DH-BLOWFISH should say something about not being
widely supported, but I am not sure what. Newer Atheme doesn't support
it and with Anope they are optional unlike PLAIN and EXTERNAL that are
in their SASL core.
This commit is contained in:
Mikaela Suomalainen
2014-12-20 12:44:18 +02:00
parent 4f48bff6a4
commit fac07b2e5a
1 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files
modules/sasl.cpp
+3 -3
View File
@@ -28,10 +28,10 @@ static const struct {
} SupportedMechanisms[] = {
{ "EXTERNAL", "TLS certificate, for use with the *cert module", false },
#ifdef HAVE_SASL_MECHANISM
{ "DH-BLOWFISH", "Secure negotiation using the DH-BLOWFISH mechanism", false },
{ "DH-AES", "More secure negotiation using the DH-AES mechanism", false },
{ "DH-BLOWFISH", "Negotiation using the DH-BLOWFISH mechanism", false },
{ "DH-AES", "Negotiation using the DH-AES mechanism", false },
#endif
{ "PLAIN", "Plain text negotiation", true },
{ "PLAIN", "Plain text negotiation, this should work always if the network supports SASL", true },
{ NULL, NULL, false }
};