freeipa#dfd560a1 reworked HTTPS backend for FreeIPA client connections. It uses very basic SSL settings which permit some old ciphers/hashes which used alone are vulnerable. Harden the settings of this HTTPS connection not to use old and industry deprecated methods.
Metadata Update from @stlaz: - Custom field on_review adjusted to https://github.com/freeipa/freeipa/pull/544
Metadata Update from @stlaz: - Issue assigned to stlaz
master:
Metadata Update from @tkrizek: - Issue close_status updated to: fixed - Issue priority set to: 3 - Issue set to the milestone: FreeIPA 4.5 - Issue status updated to: Closed (was: Open)
Log in to comment on this ticket.