--- a/core/certmanager.lua Thu Nov 07 17:18:20 2013 +0100
+++ b/core/certmanager.lua Sat Nov 09 18:36:32 2013 +0000
@@ -37,7 +37,7 @@
capath = "/etc/ssl/certs";
protocol = "sslv23";
verify = (ssl and ssl.x509 and { "peer", "client_once", }) or "none";
- options = { "no_sslv2", "no_sslv3", luasec_has_noticket and "no_ticket" or nil };
+ options = { "no_sslv2", "no_sslv3", "cipher_server_preference", luasec_has_noticket and "no_ticket" or nil };
verifyext = { "lsec_continue", "lsec_ignore_purpose" };
curve = "secp384r1";
ciphers = "HIGH:!DSS:!aNULL@STRENGTH";