[Bug 57117] New: Increase the default cipher for HTTPS Test Script Recorder from SSLv3 to TLS

bugzilla Sun, 19 Oct 2014 08:31:58 -0700

https://issues.apache.org/bugzilla/show_bug.cgi?id=57117


            Bug ID: 57117
           Summary: Increase the default cipher for HTTPS Test Script
                    Recorder from SSLv3 to TLS
           Product: JMeter
           Version: unspecified
          Hardware: All
                OS: All
            Status: NEW
          Severity: normal
          Priority: P2
         Component: HTTP
          Assignee: [email protected]
          Reporter: [email protected]

The default cipher for the HTTPS Test Script Recorder (JMeter's proxy) is
SSLv3. With the recent security issue (CVE-2014-3566) with this cipher, is
better to upgrade to TLS (like the current default cipher for HTTP sampler).

Reference:
POODLE: SSLv3 vulnerability (CVE-2014-3566)
https://access.redhat.com/articles/1232123

-- 
You are receiving this mail because:
You are the assignee for the bug.

[Bug 57117] New: Increase the default cipher for HTTPS Test Script Recorder from SSLv3 to TLS

Reply via email to