From c1e3f0eba569cfd3d1b509b90251e9e1e1ac0c61 Mon Sep 17 00:00:00 2001
From: Thomas Beranek <tberanek.softdev@gmail.com>
Date: Sun, 18 Aug 2019 02:55:00 -0500
Subject: [PATCH] Update ssl_version to PROTOCOL_TLSv1_2

@Eugeny TLS1.0 is vulnerable to BEAST and POODLE attacks. Also allows the use weak cryptography.
---
 ajenti/core.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ajenti/core.py b/ajenti/core.py
index 35272b6c27..5efd912de6 100644
--- a/ajenti/core.py
+++ b/ajenti/core.py
@@ -131,7 +131,7 @@ def cmd_list_instances_session():
     ssl_args = {}
     if ajenti.config.tree.ssl.enable:
         ssl_args['certfile'] = ajenti.config.tree.ssl.certificate_path
-        ssl_args['ssl_version'] = gevent.ssl.PROTOCOL_TLSv1
+        ssl_args['ssl_version'] = gevent.ssl.PROTOCOL_TLSv1_2
         logging.info('SSL enabled: %s' % ssl_args['certfile'])
 
     ajenti.server = SocketIOServer(