From 10d3ae48259ae0da741cc79a8b2ab998e454e79f Mon Sep 17 00:00:00 2001
From: lteo <>
Date: Tue, 21 Oct 2014 02:29:54 +0000
Subject: [PATCH] Remove SSLv2 and SSLv3 references from the example
 relayd.conf and the relevant example snippet in the relayd.conf(5) man page.

Change the default SSL protocols in the example file/man page to
"no tlsv1.0" (suggested by sthen@), which will enable the TLSv1.1
and TLSv1.2 protocols only.

feedback/ok jsing@ reyk@ sthen@
---
 src/etc/examples/relayd.conf | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/etc/examples/relayd.conf b/src/etc/examples/relayd.conf
index efb9dc4a..4de1d27c 100644
--- a/src/etc/examples/relayd.conf
+++ b/src/etc/examples/relayd.conf
@@ -1,4 +1,4 @@
-# $OpenBSD: relayd.conf,v 1.1 2014/07/11 21:20:10 deraadt Exp $
+# $OpenBSD: relayd.conf,v 1.2 2014/10/21 02:29:54 lteo Exp $
 #
 # Macros
 #
@@ -45,7 +45,7 @@ http protocol httpssl {
 	# Various TCP performance options
 	tcp { nodelay, sack, socket buffer 65536, backlog 128 }
 
-#	ssl { no sslv2, sslv3, tlsv1, ciphers HIGH }
+#	ssl { no tlsv1.0, ciphers HIGH }
 #	ssl session cache disable
 }