cloudstack-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "ASF subversion and git services (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (CLOUDSTACK-10319) Prefer TLSv1.2 and deprecate TLS 1.0/1.1
Date Mon, 26 Mar 2018 08:47:00 GMT

    [ https://issues.apache.org/jira/browse/CLOUDSTACK-10319?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16413580#comment-16413580
] 

ASF subversion and git services commented on CLOUDSTACK-10319:
--------------------------------------------------------------

Commit c4cc679c3b34a5f38cc17a01a96e9d69aa370641 in cloudstack's branch refs/heads/4.11 from
[~rohithsharma]
[ https://gitbox.apache.org/repos/asf?p=cloudstack.git;h=c4cc679 ]

CLOUDSTACK-10319: Allow TLSv1, v1.1 for XenServer, Vmware (#2507)

This reverts changes from #2480, instead moves TLS settings to
java ciphers settings config file. It should be sufficient to enforce
TLS v1.2 on public facing CloudStack services:
- CloudStack webserver (Jetty based)
- Apache2 for secondary storage VM
- CPVM HTTPs server

Signed-off-by: Rohit Yadav <rohit.yadav@shapeblue.com>

> Prefer TLSv1.2 and deprecate TLS 1.0/1.1
> ----------------------------------------
>
>                 Key: CLOUDSTACK-10319
>                 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-10319
>             Project: CloudStack
>          Issue Type: Bug
>      Security Level: Public(Anyone can view this level - this is the default.) 
>            Reporter: Rohit Yadav
>            Assignee: Rohit Yadav
>            Priority: Major
>             Fix For: 4.12.0.0, 4.11.1.0
>
>
> TLS 1.0 and 1.1 are both recommended to not be used. The aim would be to make cloudstack prefer
tls 1.2.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Mime
View raw message