[
https://issues.apache.org/jira/browse/HADOOP-16549?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16925609#comment-16925609
]
Wei-Chiu Chuang commented on HADOOP-16549:
------------------------------------------
Also note HADOOP-16152 intends to upgrade to Jetty 9.4, and since 9.4.12 it
supports TLS 1.3. So HADOOP-16152 should also add TLS1.3 into the enabled
protocol.
> Remove Unsupported SSL/TLS Versions from Docs/Properties
> --------------------------------------------------------
>
> Key: HADOOP-16549
> URL: https://issues.apache.org/jira/browse/HADOOP-16549
> Project: Hadoop Common
> Issue Type: Improvement
> Components: documentation, security
> Reporter: Daisuke Kobayashi
> Assignee: Daisuke Kobayashi
> Priority: Minor
> Attachments: HADOOP-16549.001.patch
>
>
> We should remove the following unsupported versions from docs and
> core-default.xml appropriately.
> TLS v1.0
> TLS v1.1
> SSL v3
> SSLv2Hello
> ref:
> https://www.eclipse.org/jetty/documentation/9.3.27.v20190418/configuring-ssl.html
> https://github.com/eclipse/jetty.project/issues/866
> [~aajisaka], I happened to find you left TLSv1.1 in
> https://issues.apache.org/jira/browse/HADOOP-16000. Should we still keep it?
--
This message was sent by Atlassian Jira
(v8.3.2#803003)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
