Re: [SR-Users] Disabling weak SSL Cypher suites

Hello, small addition - it is not possible to only specify TLS v1.3 at the moment (but work is planned here) - use TLSv1.2+ to get all version equal or larger TLS 1.2. Cheers, Henning -- Henning Westerholt - https://skalatan.de/blog/ Kamailio services - https://gilawa.com<https://gilawa.com/> From: sr-users &lt;sr-users-bounces(a)lists.kamailio.org&gt; On Behalf Of Arik Halperin Sent: Tuesday, December 10, 2019 7:29 AM To: sr-users(a)lists.kamailio.org Cc: Tsur Arieli &lt;tsur(a)telemessage.com&gt;om>; Yossi Shteingart &lt;yossi(a)telemessage.com&gt; Subject: [SR-Users] Disabling weak SSL Cypher suites Hello, How can I disable: TLS_RSA_WITH_RC4_128_SHA (0x5) INSECURE128 TLS_RSA_WITH_RC4_128_MD5 (0x4) INSECURE128 What should I put in cypher_list in order to disable the above? I would also like support TLS 1.2 and TLS 1.3, but remove support for 1.0 and 1.1 Thanks, Arik Halperin