[jira] [Commented] (TS-3136) Change default TLS cipher suites

[ https://issues.apache.org/jira/browse/TS-3136?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=14594463#comment-14594463 ] John Eaglesham commented on TS-3136: People don't use DHE because of the performance

[jira] [Commented] (TS-3136) Change default TLS cipher suites

[ https://issues.apache.org/jira/browse/TS-3136?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=14594711#comment-14594711 ] John Eaglesham commented on TS-3136: If we want to disable DHE in the default install

[jira] [Commented] (TS-3136) Change default TLS cipher suites

[ https://issues.apache.org/jira/browse/TS-3136?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=14592951#comment-14592951 ] John Eaglesham commented on TS-3136: Should we prefer AES128 over AES256? AES128 is

[jira] [Commented] (TS-3136) Change default TLS cipher suites

[ https://issues.apache.org/jira/browse/TS-3136?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=14586594#comment-14586594 ] John Eaglesham commented on TS-3136: I think it's better to ship a secure SSL

[jira] [Commented] (TS-3136) Change default TLS cipher suites

[ https://issues.apache.org/jira/browse/TS-3136?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=14216871#comment-14216871 ] John Eaglesham commented on TS-3136: We shouldn't change the default cipher list in a

[jira] [Updated] (TS-3136) Change default TLS cipher suites

[ https://issues.apache.org/jira/browse/TS-3136?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] John Eaglesham updated TS-3136: --- Fix Version/s: (was: 5.2.0) 6.0.0 Labels: compatibility (was: )

[jira] [Updated] (TS-2417) Add forward secrecy support with DHE (SSL related)

[ https://issues.apache.org/jira/browse/TS-2417?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] John Eaglesham updated TS-2417: --- Attachment: ats_dhe-3.patch Patch updated with a clearer error message, documentation, and the config

[jira] [Commented] (TS-2417) Add forward secrecy support with DHE (SSL related)

[ https://issues.apache.org/jira/browse/TS-2417?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=14192233#comment-14192233 ] John Eaglesham commented on TS-2417: Thanks for taking a look. I figured administrators

[jira] [Updated] (TS-2417) Add forward secrecy support with DHE (SSL related)

[ https://issues.apache.org/jira/browse/TS-2417?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] John Eaglesham updated TS-2417: --- Summary: Add forward secrecy support with DHE (SSL related) (was: forward secrecy for non-EC key types)

[jira] [Commented] (TS-2417) Add forward secrecy support with DHE (SSL related)

[ https://issues.apache.org/jira/browse/TS-2417?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanelfocusedCommentId=14182128#comment-14182128 ] John Eaglesham commented on TS-2417: I don't think we should require all clients to