ciphers = String
              * This string specifies the ssl cipher string. The syntax of the
              ssl cipher string is a little horrible sublanguage of  its  own.
              It is documented in the ssl man page for "ciphers".

that solves that!

Begin forwarded message:

From: Richard Bucker <richard@bucker.net>
Date: April 17, 2009 1:55:12 PM EDT
To: erlyaws-list@lists.sourceforge.net
Subject: SSL SSL SSL and more SSL 

My yaws site was just pentested and one of the major complaints is that it permitted all manner of SSL thru https and recommended that I should limit it to SSLv3. One way I see that I can do this is by modifying the keys and certs(openssl -ssl3), however, looking at my other systems that run Apache there are commands that I can add to the conf file.

What is the current YAWS recommendation?

/r