Project

General

Profile

Bug #5900

Verify TLS settings used in vhosts

Added by Dominic Cleal over 6 years ago. Updated over 2 years ago.

Status:
Closed
Priority:
Normal
Category:
Foreman modules
Target version:
Difficulty:
Triaged:
Bugzilla link:
Pull request:
Fixed in Releases:
Found in Releases:

Description

https://tickets.puppetlabs.com/browse/PUP-2582 improved security of the Debian/Ubuntu puppetmaster/passenger packages, we should ensure both puppet-puppet and puppet-foreman have reasonable TLS settings that match Puppet upstream.

History

#1 Updated by Dominic Cleal about 6 years ago

  • Status changed from New to Closed
  • Assignee set to Ewoud Kohl van Wijngaarden
  • Target version set to 1.7.2
  • Legacy Backlogs Release (now unused) set to 21

https://github.com/theforeman/puppet-puppet/commit/9d67e686ea48019c42cafa85402d6efc6db27854 fixed the Puppet vhost to match upstream. Foreman's vhost has reasonable defaults from puppetlabs-apache - we'll simply inherit any security hardening that this module receives.

Also available in: Atom PDF