The new CipherSuites and Protocols settings don’t seem to work. No matter what value I set in these config fields, the server seems to behave the same. This is tested with both 3.0.3 and 3.1.1.
As mentioned on how to secure the ciphers?, the poster didn’t seem to be able to restrict the server from using certain ciphers. In my tests, I’ve set TLS_RSA_WITH_AES_128_CBC_SHA, but when analyzing the network traffic with Wireshark, the server still responds with Cipher Suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA (which is a different cipher). No matter what value I set, the server responds with the same cipher suite - similarly, no matter what value I set in , the server responds with TLS 1.0 (to this particular client). Even if I set invalid values, the server just behaves the same.
Do these settings work at all? Is there any example config on how to set them for them to have any effect?