ctubbsii commented on issue #417: Make TLSv1.2 the default for ssl-enabled
clients
URL: https://github.com/apache/accumulo/pull/417#issuecomment-379399535
I added a second commit which instructs the server-side to use TLS 1.2 by
default, also. As I understand it, there's a few well-known downgrade attacks
for 1.1 and 1.0, that we should avoid. Since we maintain the code for both
client and server, there's no reason we shouldn't use 1.2 by default. It is
still configurable, if users need something else.
This is an automated message from the Apache Git Service.
To respond to the message, please log on GitHub and use the
URL above to go to the specific comment.
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org
With regards,
Apache Git Services