hadoop-common-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Wei-Chiu Chuang (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (HADOOP-12886) Exclude weak ciphers in SSLFactory through ssl-server.xml
Date Wed, 30 Mar 2016 22:03:25 GMT

    [ https://issues.apache.org/jira/browse/HADOOP-12886?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15218961#comment-15218961
] 

Wei-Chiu Chuang commented on HADOOP-12886:
------------------------------------------

Thanks [~zhz] for multiple rounds of reviewing and committing the patch!

> Exclude weak ciphers in SSLFactory through ssl-server.xml
> ---------------------------------------------------------
>
>                 Key: HADOOP-12886
>                 URL: https://issues.apache.org/jira/browse/HADOOP-12886
>             Project: Hadoop Common
>          Issue Type: Improvement
>    Affects Versions: 2.7.2
>            Reporter: Wei-Chiu Chuang
>            Assignee: Wei-Chiu Chuang
>              Labels: Netty, datanode, security
>             Fix For: 2.8.0
>
>         Attachments: HADOOP-12886.001.patch, HADOOP-12886.002.patch, HADOOP-12886.003.patch,
HADOOP-12886.004.patch
>
>
> HADOOP-12668 added support to exclude weak ciphers in HttpServer2, which is good for
name nodes. But data node web UI is based on Netty, which uses SSLFactory and does not read
ssl-server.xml to exclude the ciphers.
> We should also add the same support for Netty for consistency.
> I will attach a full patch later.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message