hadoop-common-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "John Zhuge (JIRA)" <j...@apache.org>
Subject [jira] [Created] (HADOOP-14083) Old SSL clients should work with KMS
Date Wed, 15 Feb 2017 18:25:41 GMT
John Zhuge created HADOOP-14083:

             Summary: Old SSL clients should work with KMS
                 Key: HADOOP-14083
                 URL: https://issues.apache.org/jira/browse/HADOOP-14083
             Project: Hadoop Common
          Issue Type: Improvement
          Components: kms
    Affects Versions: 2.8.0, 2.7.4, 2.6.6
            Reporter: John Zhuge
            Assignee: John Zhuge
            Priority: Minor

HADOOP-13812 upgraded Tomcat to 6.0.48 which filters weak ciphers. Old SSL clients such as
curl stop working. The symptom is {{NSS error -12286}} when running {{curl -v}}.

Instead of forcing the SSL clients to upgrade, we can configure Tomcat to explicitly allow
enough weak ciphers so that old SSL clients can work.

This message was sent by Atlassian JIRA

To unsubscribe, e-mail: common-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: common-issues-help@hadoop.apache.org

View raw message