From a44365a15e5a066b78c67256a329e34c1b6ce2f0 Mon Sep 17 00:00:00 2001 From: "psyc://psyced.org/~lynX" <@> Date: Fri, 2 Dec 2011 20:27:33 +0100 Subject: [PATCH] is ECDHE okay? --- world/net/library/tls.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/world/net/library/tls.c b/world/net/library/tls.c index eb5e70a..384ca34 100644 --- a/world/net/library/tls.c +++ b/world/net/library/tls.c @@ -175,7 +175,7 @@ int tls_check_cipher(object sock, string scheme) { P3(("%O is using the %O cipher.\n", sock, m[TLS_CIPHER])) // shouldn't our negotiation have ensured we have PFS? - if (stringp(t = m[TLS_CIPHER]) &&! abbrev("DHE", t)) { + if (stringp(t = m[TLS_CIPHER]) &&! (abbrev("DHE", t) || abbrev("ECDHE", t))) { monitor_report("_warning_circuit_encryption_cipher_details", object_name(sock) +" ยท using "+ t +" cipher"); // we can't expect that degree of privacy from jabber, for now