[jira] [Updated] (AMBARI-12586) SSL Requirements in Firefox Break SSL

RS Craig Dupree (JIRA) Wed, 29 Jul 2015 14:56:35 -0700

     [ 
https://issues.apache.org/jira/browse/AMBARI-12586?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


RS Craig Dupree updated AMBARI-12586:
-------------------------------------
    Component/s:     (was: ambari-web)
                 ambari-server

> SSL Requirements in Firefox Break SSL
> -------------------------------------
>
>                 Key: AMBARI-12586
>                 URL: https://issues.apache.org/jira/browse/AMBARI-12586
>             Project: Ambari
>          Issue Type: Bug
>          Components: ambari-server
>    Affects Versions: 2.0.0, 2.1.0
>            Reporter: RS Craig Dupree
>
> The most recent version of Firefox requires strong SSL DH params to prevent 
> LogJam attacks, and generally we want to be able to pick more secure ciphers 
> to prevent other attacks. Could the capabilites to do this be exposed in the 
> Ambari config file to support this. I'd basically want to have settings like 
> the ones here:
> https://weakdh.org/sysadmin.html



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Updated] (AMBARI-12586) SSL Requirements in Firefox Break SSL

Reply via email to