[jira] [Commented] (KUDU-1873) Audit TLS ciphers

Dan Burkert (JIRA) Wed, 22 Feb 2017 11:22:03 -0800

    [ 
https://issues.apache.org/jira/browse/KUDU-1873?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15879017#comment-15879017
 ]


Dan Burkert commented on KUDU-1873:
-----------------------------------

This was done on the C++ side in 
https://github.com/apache/kudu/commit/6098da159dc04e8637d1ccf06349ddf5d03bbe46

> Audit TLS ciphers
> -----------------
>
>                 Key: KUDU-1873
>                 URL: https://issues.apache.org/jira/browse/KUDU-1873
>             Project: Kudu
>          Issue Type: Improvement
>          Components: rpc, security
>    Affects Versions: 1.2.0
>            Reporter: Dan Burkert
>              Labels: security
>
> We should audit our cipher lists on the server and client, making sure to 
> disable known-insecure ciphers (DES, 3DES), and making sure to prioritize 
> secure and high-performance ciphers (AES-GCM).  In particular, the default 
> cipher lists are very different across the system version of OpenSSL we 
> support.



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)

[jira] [Commented] (KUDU-1873) Audit TLS ciphers

Reply via email to