Update

author: Adam Stankiewicz <sheerun@sher.pl> 2017-09-27 19:57:29 +0200
committer: Adam Stankiewicz <sheerun@sher.pl> 2017-09-27 19:57:29 +0200
commit: 8b3418cab8eb5267b3a5743e4d5fe5f698d48bc8 (patch)
tree: 125734ac66307a962eeda16283355dde0d0fbd2e /syntax/nginx.vim
parent: 9bfde7574aa89a91b80ed9c993fc000cfc11aae7 (diff)
download: vim-polyglot-8b3418cab8eb5267b3a5743e4d5fe5f698d48bc8.tar.gz
vim-polyglot-8b3418cab8eb5267b3a5743e4d5fe5f698d48bc8.zip
1 files changed, 4 insertions, 2 deletions
diff --git a/syntax/nginx.vim b/syntax/nginx.vim
index fbd29041..944b36ab 100644
--- a/syntax/nginx.vim
+++ b/syntax/nginx.vim
@@ -707,8 +707,10 @@ if !exists('g:loaded_sslsecure')
   syn match ngxSSLCipherInsecure '[^!]\zsALL'
   syn match ngxSSLCipherInsecure '[^!]\zsCOMPLEMENTOFALL'
 
-  syn match ngxSSLCipherInsecure '[^!]\zsSHA\ze\D'      " Match SHA1 without matching SHA256+
-  syn match ngxSSLCipherInsecure '[^!]\zsSHA1'
+  " SHA ciphers are only used in HMAC with all known OpenSSL/ LibreSSL cipher suites and MAC
+  " usage is still considered safe
+  " syn match ngxSSLCipherInsecure '[^!]\zsSHA\ze\D'      " Match SHA1 without matching SHA256+
+  " syn match ngxSSLCipherInsecure '[^!]\zsSHA1'
   syn match ngxSSLCipherInsecure '[^!]\zsMD5'
   syn match ngxSSLCipherInsecure '[^!]\zsRC2'
   syn match ngxSSLCipherInsecure '[^!]\zsRC4'
author	Adam Stankiewicz <sheerun@sher.pl>	2017-09-27 19:57:29 +0200
committer	Adam Stankiewicz <sheerun@sher.pl>	2017-09-27 19:57:29 +0200
commit	8b3418cab8eb5267b3a5743e4d5fe5f698d48bc8 (patch)
tree	125734ac66307a962eeda16283355dde0d0fbd2e /syntax/nginx.vim
parent	9bfde7574aa89a91b80ed9c993fc000cfc11aae7 (diff)
download	vim-polyglot-8b3418cab8eb5267b3a5743e4d5fe5f698d48bc8.tar.gz vim-polyglot-8b3418cab8eb5267b3a5743e4d5fe5f698d48bc8.zip