From a34b6d6e6e14a39d99dbafeaef9ddb5395a7a7f6 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Sevket=20G=C3=B6kay?= <sevketgokay@gmail.com>
Date: Sat, 21 Dec 2024 14:05:31 +0100
Subject: [PATCH] remove "excludeCipherSuites" from jetty

reason: these are historic settings taken from an exemplary jetty-https.xml
back then. i am not sure how relevant and valid they are anymore. defaults
of jetty should be good enough.
---
 src/main/java/de/rwth/idsg/steve/JettyServer.java | 8 --------
 1 file changed, 8 deletions(-)

diff --git a/src/main/java/de/rwth/idsg/steve/JettyServer.java b/src/main/java/de/rwth/idsg/steve/JettyServer.java
index 6d6175e05..413996e02 100644
--- a/src/main/java/de/rwth/idsg/steve/JettyServer.java
+++ b/src/main/java/de/rwth/idsg/steve/JettyServer.java
@@ -135,14 +135,6 @@ private ServerConnector httpsConnector(HttpConfiguration httpConfig) {
         sslContextFactory.setKeyStorePath(CONFIG.getJetty().getKeyStorePath());
         sslContextFactory.setKeyStorePassword(CONFIG.getJetty().getKeyStorePassword());
         sslContextFactory.setKeyManagerPassword(CONFIG.getJetty().getKeyStorePassword());
-        sslContextFactory.setExcludeCipherSuites(
-                "SSL_RSA_WITH_DES_CBC_SHA",
-                "SSL_DHE_RSA_WITH_DES_CBC_SHA",
-                "SSL_DHE_DSS_WITH_DES_CBC_SHA",
-                "SSL_RSA_EXPORT_WITH_RC4_40_MD5",
-                "SSL_RSA_EXPORT_WITH_DES40_CBC_SHA",
-                "SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA",
-                "SSL_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA");
 
         // SSL HTTP Configuration
         HttpConfiguration httpsConfig = new HttpConfiguration(httpConfig);