Project

General

Profile

Bug #33452

Disable Webrick client initiated renegotiation

Added by Lukas Zapletal 11 months ago. Updated 11 months ago.

Status:
Closed
Priority:
Normal
Category:
Security
Target version:
Difficulty:
easy
Triaged:
Yes
Bugzilla link:
Fixed in Releases:
Found in Releases:

Description

Ruby 2.6 OpenSSL introduced a constant that can be used to disable this DoS security threat.

Associated revisions

Revision 603ce4c4 (diff)
Added by Lukas Zapletal 11 months ago

Fixes #33452 - disable SSL client renegotiation

History

#1 Updated by The Foreman Bot 11 months ago

  • Status changed from New to Ready For Testing
  • Pull request https://github.com/theforeman/smart-proxy/pull/800 added

#2 Updated by The Foreman Bot 11 months ago

  • Fixed in Releases 3.2.0 added

#3 Updated by Anonymous 11 months ago

  • Status changed from Ready For Testing to Closed

#4 Updated by Ewoud Kohl van Wijngaarden 11 months ago

  • Fixed in Releases 3.1.0 added
  • Fixed in Releases deleted (3.2.0)
  • Pull request deleted (https://github.com/theforeman/smart-proxy/pull/800)

#5 Updated by Ewoud Kohl van Wijngaarden 11 months ago

  • Target version set to 3.1.0
  • Fixed in Releases deleted (3.1.0)
  • Pull request https://github.com/theforeman/smart-proxy/pull/800 added

#6 Updated by Ewoud Kohl van Wijngaarden 11 months ago

  • Fixed in Releases 3.1.0 added

Also available in: Atom PDF