[
https://issues.apache.org/jira/browse/TINKERPOP-2023?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16586194#comment-16586194
]
ASF GitHub Bot commented on TINKERPOP-2023:
-------------------------------------------
Github user k4rthikr commented on the issue:
https://github.com/apache/tinkerpop/pull/912
@robertdale Should we also provide a config entry for disabling certain
cipher suites? For example TLS_RSA_WITH_3DES_EDE_CBC_SHA is supported. This
cipher suite has a 64-bit block size, and the security properties of this
construction do not hold when more than 32 GB of data are sent over a single
TLS connection. Thus, this cipher suite is not suitable for long-lived TLS
connections, such as those opened to a database. In fact, it wouldn't hurt to
just programmatically remove these ciphers.
> Gremlin Server should not create self-signed certs
> --------------------------------------------------
>
> Key: TINKERPOP-2023
> URL: https://issues.apache.org/jira/browse/TINKERPOP-2023
> Project: TinkerPop
> Issue Type: Improvement
> Components: server
> Affects Versions: 3.2.9
> Reporter: Robert Dale
> Assignee: Robert Dale
> Priority: Minor
> Labels: breaking, deprecation
>
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
