@gstrauss Adding :!SSLv2:!SSLv3 with the cipher-list
ssl.cipher-list = "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:CAMELLIA:DES-CBC3-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA:!SSLv2:!SSLv3"
Bug still exist.
Need a backport.
@gstrauss Adding :!SSLv2:!SSLv3 with the cipher-list RSA-AES128- GCM-SHA256: ECDHE-ECDSA- AES128- GCM-SHA256: ECDHE-RSA- AES256- GCM-SHA384: ECDHE-ECDSA- AES256- GCM-SHA384: DHE-RSA- AES128- GCM-SHA256: DHE-DSS- AES128- GCM-SHA256: kEDH+AESGCM: ECDHE-RSA- AES128- SHA256: ECDHE-ECDSA- AES128- SHA256: ECDHE-RSA- AES128- SHA:ECDHE- ECDSA-AES128- SHA:ECDHE- RSA-AES256- SHA384: ECDHE-ECDSA- AES256- SHA384: ECDHE-RSA- AES256- SHA:ECDHE- ECDSA-AES256- SHA:DHE- RSA-AES128- SHA256: DHE-RSA- AES128- SHA:DHE- DSS-AES128- SHA256: DHE-RSA- AES256- SHA256: DHE-DSS- AES256- SHA:DHE- RSA-AES256- SHA:AES128- GCM-SHA256: AES256- GCM-SHA384: AES128- SHA256: AES256- SHA256: AES128- SHA:AES256- SHA:AES: CAMELLIA: DES-CBC3- SHA:!aNULL: !eNULL: !EXPORT: !DES:!RC4: !MD5:!PSK: !aECDH: !EDH-DSS- DES-CBC3- SHA:!EDH- RSA-DES- CBC3-SHA: !KRB5-DES- CBC3-SHA: !SSLv2: !SSLv3"
ssl.cipher-list = "ECDHE-
Will cause a "No Cipher can be used" error.