GitHub user StephanEwen opened a pull request:
https://github.com/apache/flink/pull/6324
[FLINK-9424] [security] Set default cipher suite to a more compatible
cipher suite
## What is the purpose of the change
This reverts "[FLINK-9310] [security] Update standard cipher suites for
secure mode"
The upgraded ciphers are not yet supported on all platforms and JDK
versions, making
the getting-started process rough. Instead, we document our recommendation
to set these
values in the configuration.
## Brief change log
- Reverts "[FLINK-9310] [security] Update standard cipher suites for
secure mode"
- Add docs to manually configure the stronger cipher suites
## Documentation
Adds a section to the SSL docs.
You can merge this pull request into a Git repository by running:
$ git pull https://github.com/StephanEwen/incubator-flink downgrade_ciphers
Alternatively you can review and apply these changes as the patch at:
https://github.com/apache/flink/pull/6324.patch
To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:
This closes #6324
----
commit 37abf46f6030b6404707958e5a3a3fae0051dbea
Author: Stephan Ewen <sewen@...>
Date: 2018-07-13T07:31:18Z
[FLINK-9424] [security] Set default cipher suite to a more compatible
cipher suite.
The upgraded ciphers are not yet supported on all platforms and JDK
versions, making
the getting-started process rough. Instead, we document our recommendation
to set these
values in the configuration.
This reverts "[FLINK-9310] [security] Update standard cipher suites for
secure mode"
----
---
