Project

General

Profile

Actions
Copy link

Bug #32762

closed

Disable SSLInsecureRenegotiation by default

Added by William Clark over 2 years ago. Updated over 2 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Category:
Foreman modules
Target version:
Foreman - 3.0.0
Difficulty:
Triaged:
No
Bugzilla link:
1950475
Pull request:
https://github.com/theforeman/puppet-pulp/pull/413
Fixed in Releases:
Foreman - 3.0.0
Found in Releases:
Red Hat JIRA:

Description

Cloned from https://bugzilla.redhat.com/show_bug.cgi?id=1950475

By default SSLInsecureRenegotiation is enabled here:
~~~
[root@iridium ~]# vi /etc/httpd/conf.d/10-pulp.conf

  1. allow older yum clients to connect, see bz 647828
    SSLInsecureRenegotiation on
    ~~~

It looks like in bz 1174942 we already wanted to have this disabled, but it's still enabled by default even in Satellite 6.8.

If we still have reason to enable this by default then perhaps an installer option to disable it, or changing the value via custom-hiera if it can be edited there.

Actions
Copy link
 #1

Updated by The Foreman Bot over 2 years ago

  • Status changed from New to Ready For Testing
  • Pull request https://github.com/theforeman/puppet-pulp/pull/413 added
Actions
Copy link
 #2

Updated by The Foreman Bot over 2 years ago

  • Fixed in Releases 3.0.0 added
Actions
Copy link
 #3

Updated by Paul Dudley over 2 years ago

  • Status changed from Ready For Testing to Closed
Actions
Copy link
 #4

Updated by Amit Upadhye over 2 years ago

  • Category set to Foreman modules
  • Target version set to 3.0.0
Actions
Copy link

Also available in: Atom PDF