Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update SSL config to use TLSv1.2 #140

Closed
jkerr5 opened this issue Oct 9, 2020 · 3 comments
Closed

Update SSL config to use TLSv1.2 #140

jkerr5 opened this issue Oct 9, 2020 · 3 comments
Assignees
@hansenmc

Comments

@jkerr5
Copy link

jkerr5 commented Oct 9, 2020

The default SSL config uses SSLv3 which is disabled on most machines now. It should be updated to use TLSv1.2.
@jkerr5 jkerr5 changed the title Update to SSL config to use TLSv1.2 Update SSL config to use TLSv1.2 Oct 9, 2020
@hansenmc
Copy link
Member

hansenmc commented Oct 9, 2020

Yes, will update that for the default and look to expose as a configurable value, for future

@hansenmc hansenmc self-assigned this Oct 9, 2020
@jkerr5
Copy link
Author

jkerr5 commented Oct 12, 2020

Thanks @hansenmc Any thoughts on getting a quick turnaround on this? I'm using my own custom SSL config class as a workaround right now but it would simplify for our customer if I didn't have to do that.

@hansenmc
Copy link
Member

hansenmc commented Oct 12, 2020
edited
Loading

Yes, working on it now. Using this as an opportunity to do just a little bit more than have hard-coded default changed. Going to have the TrustAnyoneSSLConfig read SSL-ENABLED-PROTOCOLS and doing a little cleanup.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@hansenmc hansenmc

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@jkerr5 @hansenmc