Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Deprecate TLS v1.1, change ciphers #388

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Deprecate TLS v1.1, change ciphers #388

wants to merge 1 commit into from

Conversation

hweawer
Copy link
Collaborator

@hweawer hweawer commented Dec 20, 2024

What

Deprecating TLS v1.1, remove ciphers. Affects all the Kraken services.

Why

Mitigating vulnerabilities that were found with the security checks.

| tlsv1_0-enabled                                 | TLS Server Supports TLS version 1-0                         |
| ssl-cve-2011-3389-beast                         | TLS-SSL Server is enabling the BEAST attack                 |
| ssl-weak-message-authentication-code-algorithms | TLS-SSL Weak Message Authentication Code Cipher Suites      |

How

Changing nginx configs. Tested that pulling works in a devzone.

@hweawer hweawer self-assigned this Dec 20, 2024
@CLAassistant
Copy link

CLAassistant commented Dec 20, 2024

CLA assistant check
All committers have signed the CLA.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants