Actions
Bug #13747
closed
webrick needs option to change SSL ciphers via configuration vs hard coded values
Difficulty:
Triaged:
Bugzilla link:
Pull request:
Description
Cloned from https://bugzilla.redhat.com/show_bug.cgi?id=1282514
Description of problem:
Currently the foreman-proxy piece has hard coded SSL ciphers in the following file:
/usr/share/foreman-proxy/lib/poodles-fix.rb
In order for users to pass certain security audits some Ciphers need to be disabled and currently they only approach is to modify the code, remove the offending cipher, and restart foreman-proxy. This workaround does not survive rpm updates and needs to be moved to a configuration file
Updated by The Foreman Bot almost 9 years ago
- Status changed from New to Ready For Testing
- Assignee set to Tomer Brisker
- Pull request https://github.com/theforeman/smart-proxy/pull/380 added
Updated by Tomer Brisker almost 9 years ago
- Category set to Security
- Assignee deleted (
Tomer Brisker) - Priority changed from High to Normal
Updated by Anonymous over 8 years ago
- Status changed from Ready For Testing to Closed
- % Done changed from 0 to 100
Applied in changeset b73b71a982ce60bdc9ca194d47a4f80c972d661e.
Updated by Dominic Cleal over 8 years ago
- Translation missing: en.field_release set to 136
Actions