impala-reviews mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "John Russell (Code Review)" <>
Subject [Impala-ASF-CR] IMPALA-5473: [DOCS] Document TLS min version & cipher options
Date Fri, 27 Oct 2017 23:04:43 GMT
John Russell has posted comments on this change. ( )

Change subject: IMPALA-5473: [DOCS] Document TLS min version & cipher options

Patch Set 2:


I'll punt to Sailesh for the answer to one of Henry's questions.
File docs/topics/impala_ssl.xml:
PS2, Line 171: This value is used in some organizations to disallow TLS 1.0 and 1.1.
> This seems redundant, as that's what "Allow any TLS version of 1.2 higher."
Hmm I was trying to come up a subtle way to indicate, "consider using this value if your organization
is security-conscious". I'm not an expert on TLS/SSL vulns but I did turn up this one that
suggests some problems are in both 1.0 and 1.1 but not 1.2.
PS2, Line 177: TLSv1.2 may not work
> How does it 'not work' - does the daemon fail to start, or does the daemon 
Good question for Sailesh!

To view, visit
To unsubscribe, visit

Gerrit-Project: Impala-ASF
Gerrit-Branch: master
Gerrit-MessageType: comment
Gerrit-Change-Id: Ia1705262f8c01e38c616541d1c48f5d0cad5498e
Gerrit-Change-Number: 8401
Gerrit-PatchSet: 2
Gerrit-Owner: John Russell <>
Gerrit-Reviewer: Bharath Vissapragada <>
Gerrit-Reviewer: Henry Robinson <>
Gerrit-Reviewer: John Russell <>
Gerrit-Reviewer: Michael Brown <>
Gerrit-Reviewer: Sailesh Mukil <>
Gerrit-Reviewer: Tim Armstrong <>
Gerrit-Comment-Date: Fri, 27 Oct 2017 23:04:43 +0000
Gerrit-HasComments: Yes

  • Unnamed multipart/alternative (inline, 8-Bit, 0 bytes)
View raw message