File use-system-wide-tls-cipher-policy.patch of Package vsftpd.19316

Index: b/tunables.c
===================================================================
--- a/tunables.c	2020-12-08 11:03:25.922393948 +0000
+++ b/tunables.c	2020-12-08 11:10:40.189403732 +0000
@@ -293,8 +293,7 @@ tunables_load_defaults()
   install_str_setting("/usr/share/ssl/certs/vsftpd.pem",
                       &tunable_rsa_cert_file);
   install_str_setting(0, &tunable_dsa_cert_file);
-  install_str_setting("AES128-SHA:DES-CBC3-SHA:DHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384",
-		      &tunable_ssl_ciphers);
+  install_str_setting("DEFAULT_SUSE", &tunable_ssl_ciphers);
   install_str_setting(0, &tunable_rsa_private_key_file);
   install_str_setting(0, &tunable_dsa_private_key_file);
   install_str_setting(0, &tunable_ca_certs_file);
Index: b/vsftpd.conf.5
===================================================================
--- a/vsftpd.conf.5	2020-12-08 11:12:26.326917355 +0000
+++ b/vsftpd.conf.5	2020-12-08 11:12:36.492870768 +0000
@@ -1017,7 +1017,7 @@ man page for further details. Note that
 security precaution as it prevents malicious remote parties forcing a cipher
 which they have found problems with.
 
-Default: AES128-SHA:DES-CBC3-SHA:DHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384
+Default: DEFAULT_SUSE
 .TP
 .B user_config_dir
 This powerful option allows the override of any config option specified in