Feature #29252
Stop accepting TLS 1.1 connections
Status:
Closed
Priority:
Normal
Assignee:
Category:
Security
Target version:
Pull request:
Fixed in Releases:
Found in Releases:
Description
TLS 1.1 is not needed since all tools connecting to the Smart Proxy should support TLS 1.2. A general rule in security is to disable what's not needed.
Related issues
Associated revisions
History
#1
Updated by The Foreman Bot over 2 years ago
- Assignee set to Ewoud Kohl van Wijngaarden
- Status changed from New to Ready For Testing
- Pull request https://github.com/theforeman/smart-proxy/pull/752 added
#2
Updated by The Foreman Bot over 2 years ago
- Fixed in Releases 2.1.0 added
#3
Updated by Ewoud Kohl van Wijngaarden over 2 years ago
- Status changed from Ready For Testing to Closed
Applied in changeset ebdde78c329d6bf67b198446dae64d8952d0ac4a.
#4
Updated by Ewoud Kohl van Wijngaarden over 2 years ago
- Subject changed from Disable TLS 1.1 support in listening to Stop accepting TLS 1.1 connections
#5
Updated by Ewoud Kohl van Wijngaarden over 2 years ago
- Related to Feature #29624: Stop accepting on TLS 1.1 added
#6
Updated by Ewoud Kohl van Wijngaarden over 1 year ago
- Related to Tracker #31386: Default to TLS 1.2+ added
Fixes #29252 - Stop accepting TLS 1.1 connections
TLS 1.1 is not needed since all tools connecting to the Smart Proxy
should support TLS 1.2. A general rule in security is to disable what's
not needed.