Project

General

Profile

Feature #29625

Stop accepting on TLS 1.1 for Candlepin

Added by Ewoud Kohl van Wijngaarden 7 months ago. Updated 7 months ago.

Status:
Closed
Priority:
Normal
Category:
Foreman modules
Target version:
Difficulty:
Triaged:
Yes
Bugzilla link:
Fixed in Releases:
Found in Releases:

Description

Katello is the only thing connecting to Candlepin and current setups shouldn't use TLS 1.1 anymore. PCI compliant setups are also required to disable it. By doing this out of the box, the software becomes more secure and more compliant.

Associated revisions

Revision 1243c977 (diff)
Added by Ewoud Kohl van Wijngaarden 7 months ago

Fixes #29625 - Stop accepting TLS 1.1 connections

Katello is the only thing connecting to Candlepin and current setups
shouldn't use TLS 1.1 anymore. PCI compliant setups are also required to
disable it. By doing this out of the box, the software becomes more
secure and more compliant.

History

#1 Updated by The Foreman Bot 7 months ago

  • Assignee set to Ewoud Kohl van Wijngaarden
  • Status changed from New to Ready For Testing
  • Pull request https://github.com/theforeman/puppet-candlepin/pull/152 added

#2 Updated by The Foreman Bot 7 months ago

  • Fixed in Releases 2.1.0 added

#3 Updated by Ewoud Kohl van Wijngaarden 7 months ago

  • Status changed from Ready For Testing to Closed

Also available in: Atom PDF