Block unsecure ciphers for browsers other than IE

[fpietrosanti]

In reference to the bug #55, this ticket is to track the implementation of blocking of unsecure cipher uses by browsers others than MS IE.

---

Want to back this issue? Post a bounty on it! We accept bounties via Bountysource.

[DrWhax]

Could I also add it would be nice to prefer PFS ciphers over switching to less secure one's like RC4?

[fpietrosanti]

Properly fine tuning of ciphers is something that would require some a) logging all SSL negotiation to understand what went wrong/when b) restrict it to only few PFS ciphers c) define supported browsers d) test supported browser e) eventually improve twisted/PyOpenSSL support at #55 with ECDHE support . "a" and "e" could be skipped/postponed