Bug #32762
Disable SSLInsecureRenegotiation by default
Pull request:
Fixed in Releases:
Found in Releases:
Description
Cloned from https://bugzilla.redhat.com/show_bug.cgi?id=1950475
By default SSLInsecureRenegotiation is enabled here:
~~~
[root@iridium ~]# vi /etc/httpd/conf.d/10-pulp.conf
- allow older yum clients to connect, see bz 647828
SSLInsecureRenegotiation on
~~~
It looks like in bz 1174942 we already wanted to have this disabled, but it's still enabled by default even in Satellite 6.8.
If we still have reason to enable this by default then perhaps an installer option to disable it, or changing the value via custom-hiera if it can be edited there.
Associated revisions
History
#1
Updated by The Foreman Bot 12 months ago
- Status changed from New to Ready For Testing
- Pull request https://github.com/theforeman/puppet-pulp/pull/413 added
#2
Updated by The Foreman Bot 12 months ago
- Fixed in Releases 3.0.0 added
#3
Updated by Paul Dudley 12 months ago
- Status changed from Ready For Testing to Closed
Applied in changeset puppet-pulp|4797120216bb5e79732825fd5f702c7541f8e64f.
#4
Updated by Amit Upadhye 10 months ago
- Target version set to 3.0.0
- Category set to Foreman modules
Fixes #32762 - Disable SSLInsecureRenegotiation