Bug #32762: Disable SSLInsecureRenegotiation by default - Installer - Foreman

Bug #32762

Disable SSLInsecureRenegotiation by default

Added by William Clark over 1 year ago. Updated over 1 year ago.

Status:

Closed

Priority:

Normal

Assignee:

Category:

Foreman modules

Target version:

Foreman - 3.0.0

Difficulty:

Triaged:

Bugzilla link:

1950475

Pull request:

https://github.com/theforeman/puppet-pulp/pull/413

Fixed in Releases:

Foreman - 3.0.0

Found in Releases:

Red Hat JIRA:

Description

Cloned from https://bugzilla.redhat.com/show_bug.cgi?id=1950475

By default SSLInsecureRenegotiation is enabled here:
~~~
[root@iridium ~]# vi /etc/httpd/conf.d/10-pulp.conf

allow older yum clients to connect, see bz 647828
SSLInsecureRenegotiation on
~~~

It looks like in bz 1174942 we already wanted to have this disabled, but it's still enabled by default even in Satellite 6.8.

If we still have reason to enable this by default then perhaps an installer option to disable it, or changing the value via custom-hiera if it can be edited there.

Associated revisions

Revision 47971202 (diff)
Added by Paul Dudley over 1 year ago

Fixes #32762 - Disable SSLInsecureRenegotiation

History

#1 Updated by The Foreman Bot over 1 year ago

Status changed from New to Ready For Testing
Pull request https://github.com/theforeman/puppet-pulp/pull/413 added

#2 Updated by The Foreman Bot over 1 year ago

Fixed in Releases 3.0.0 added

#3 Updated by Paul Dudley over 1 year ago

Status changed from Ready For Testing to Closed

Applied in changeset puppet-pulp|4797120216bb5e79732825fd5f702c7541f8e64f.

#4 Updated by Amit Upadhye over 1 year ago

Target version set to 3.0.0
Category set to Foreman modules

Also available in: Atom PDF

Project

General

Profile

Foreman » Installer

Issues

Custom queries