Forum Discussion
What_Lies_Bene1
Oct 10, 2013Cirrostratus
Well, it doesn't fix OpenSSL, but it avoids it and thus mitigates the risk. The cipher string to use to avoid using compat ciphers (and thus OpenSSL) for your version would be:
!SSLv2:ALL:!DH:!ADH:!EDH:!MD5:!EXPORT:!DES:@SPEED
.
Note when you move to v10.2 or later, you no longer need to do this, the default ciphers only include native ciphers.