Actions
Bug #12578
closedSmart-Proxy doesn't enforce ciphersuite ordering
Description
The SSL settings don't enforce ciphersuite ordering, which may allow the clients to make worse decisions about ciphersuite selection or maliciously downgraded. Enabling the 'SSLHonorCipherOrder' or 'ssl_prefer_server_ciphers' settings for Apache or Nginx is considered a best practice.
Updated by The Foreman Bot about 9 years ago
- Status changed from New to Ready For Testing
- Assignee set to Brandon Weeks
- Pull request https://github.com/theforeman/smart-proxy/pull/348 added
Updated by Brandon Weeks about 9 years ago
- Status changed from Ready For Testing to Closed
- % Done changed from 0 to 100
Applied in changeset ec99de9917fcc7ba6e1595d85d508245a3ff6695.
Updated by Dominic Cleal about 9 years ago
- Translation missing: en.field_release set to 104
Actions