jmuehlner opened a new pull request, #392: URL: https://github.com/apache/guacamole-server/pull/392
As discussed in https://issues.apache.org/jira/browse/GUACAMOLE-1674, this change does the following when FIPS mode is active on the guacd server: - Disables NLA security mode when "any" mode is selected in Guacamole - Warns the user that their selected mode is known not to work if they explicitly select NLA security mode NOTE: Theoretically both TLS and RDP modes _should_ work, though I was not able to get RDP security mode to work with FIPS enabled, either with a Windows or XRDP remote machine. In practice, this probably won't matter too much, since the security mode negotiation always seems to prefer TLS over RDP anyway. I can also disable/warn about RDP mode too, if people think that's a good idea, though I think we should probably just leave it as is for now. Maybe there's some combination of FreeRDP version / remote environment where it will work, though I wasn't able to find it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
