rhtyd commented on issue #2480: CLOUDSTACK-10319: Prefer TLSv1.2, deprecate TLSv1.0,1.1 URL: https://github.com/apache/cloudstack/pull/2480#issuecomment-372265703 Test LGTM, no failures seen. The only affected public facing services are browser related - (1) apache2 on systemvms and (2) jetty powered mgmt server. Given the UI does not support IE, we've been testing against modern browsers such as Chrome and Firefox only, acceptance of the PR should not cause new failures for users. If admins want to enable TLS support (1.0+1.1) for browsers for the UI, they may configure the java.security.ciphers file or explicitly set the `jdk.tls.disabledAlgorithms= SSLv2Hello, SSLv3` option to allow both TLSv1, v1.1. With Java8, TLS1.2 is enabled by default.
---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org With regards, Apache Git Services
