It would be nice if we would be able to set the ssl cipher suites for the webgui.
With the default Installation the following cipher suites are vulnerable to “Sweet32”:
EDH-RSA-DES-CBC3-SHA Kx=DH Au=RSA Enc=3DES-CBC(168) Mac=SHA1
ECDHE-RSA-DES-CBC3-SHA Kx=ECDH Au=RSA Enc=3DES-CBC(168) Mac=SHA1
DES-CBC3-SHA Kx=RSA Au=RSA Enc=3DES-CBC(168) Mac=SHA1
I’d like to disable them. Is there an “official” way of doing so? If not, a custom configuration option for nginx in the services tab (like you did with samba) would be nice.