lib/localhost/authority.rb in localhost-1.1.2 vs lib/localhost/authority.rb in localhost-1.1.3

@@ -100,17 +100,21 @@
 			@store ||= OpenSSL::X509::Store.new.tap do |store|
 				store.add_cert(self.certificate)
 			end
 		end
 		
+		SERVER_CIPHERS = "EECDH+CHACHA20:EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5".freeze
+		
 		def server_context(*args)
 			OpenSSL::SSL::SSLContext.new(*args).tap do |context|
 				context.key = self.key
 				context.cert = self.certificate
 				
 				context.session_id_context = "localhost"
 				
-				context.set_params
+				context.set_params(
+					ciphers: SERVER_CIPHERS
+				)
 			end
 		end
 		
 		def client_context(*args)
 			OpenSSL::SSL::SSLContext.new(*args).tap do |context|