From 91bbb744dc94469210d254bd5219d35b43b3d3b5 Mon Sep 17 00:00:00 2001
From: Rahul Somasundaram <Rahul.Somasundaram@checkpt.com>
Date: Thu, 22 Sep 2022 07:53:39 +0530
Subject: [PATCH] Revert "adding TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA to safe
 cipher suite"

This reverts commit fe0c53ec439940635864a9d1bc4687245dbe4373.
---
 internal/aghtls/aghtls.go | 1 +
 1 file changed, 1 insertion(+)

diff --git a/internal/aghtls/aghtls.go b/internal/aghtls/aghtls.go
index 2e286735..5dc7a382 100644
--- a/internal/aghtls/aghtls.go
+++ b/internal/aghtls/aghtls.go
@@ -17,6 +17,7 @@ func SaferCipherSuites() (safe []uint16) {
 			tls.TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA,
 			tls.TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA,
 			tls.TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,
+			tls.TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,
 			tls.TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256,
 			tls.TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256:
 			// Less safe 3DES and CBC suites, go on.