brooklyn-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From neykov <...@git.apache.org>
Subject [GitHub] incubator-brooklyn pull request: White list strong TLS ciphers
Date Tue, 05 May 2015 15:17:22 GMT
GitHub user neykov opened a pull request:

    https://github.com/apache/incubator-brooklyn/pull/627

    White list strong TLS ciphers

    Default config uses weak/compromised ciphers. Followed recommendations from https://wiki.mozilla.org/Security/Server_Side_TLS.
    
    Upgrade of Jetty was needed for the support of white-listing (previous version supported
black lists only).

You can merge this pull request into a Git repository by running:

    $ git pull https://github.com/neykov/incubator-brooklyn console-ciphers

Alternatively you can review and apply these changes as the patch at:

    https://github.com/apache/incubator-brooklyn/pull/627.patch

To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:

    This closes #627
    
----
commit 7970cb9d6449f3ce47d82213ddde8404cbc85c0c
Author: Svetoslav Neykov <svetoslav.neykov@cloudsoftcorp.com>
Date:   2015-05-05T12:27:33Z

    Use white listed protocols and ciphers for console https
    
    Jetty upgrade needed because of support for white-listing.

commit 9fec374a94ac73f329eb7c54fb5e2b6f7f195fb5
Author: Svetoslav Neykov <svetoslav.neykov@cloudsoftcorp.com>
Date:   2015-05-05T12:41:46Z

    White list ciphers for nginx and Tomcat

----


---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at infrastructure@apache.org or file a JIRA ticket
with INFRA.
---

Mime
View raw message