# to work around the cert too weak issue 
tls-cipher "DEFAULT:@SECLEVEL=0"