Issue #6730: Harden client HTTPS connections - freeipa

freeipa

#6730 Harden client HTTPS connections

Closed: fixed 7 years ago Opened 7 years ago by stlaz.

freeipa#dfd560a1 reworked HTTPS backend for FreeIPA client connections. It uses very basic SSL settings which permit some old ciphers/hashes which used alone are vulnerable.
Harden the settings of this HTTPS connection not to use old and industry deprecated methods.

Metadata Update from @stlaz:
- Custom field on_review adjusted to https://github.com/freeipa/freeipa/pull/544

7 years ago

Metadata Update from @stlaz:
- Issue assigned to stlaz

7 years ago

Metadata Update from @stlaz:
- Issue assigned to stlaz

7 years ago

tkrizek commented 7 years ago

master:

fda22c3 Don't use weak ciphers for client HTTPS connections

Metadata Update from @tkrizek:
- Issue close_status updated to: fixed
- Issue priority set to: 3
- Issue set to the milestone: FreeIPA 4.5
- Issue status updated to: Closed (was: Open)

7 years ago

Metadata

Assignee

stlaz

Tags

None

Blocking

None

Depending on

None

Priority

normal

Milestone

FreeIPA 4.5

None

affects_doc

None

source

None

knownissue

None

type

None

blockedby

None

test_case

None

component

None

blocking

None

on_review

https://github.com/freeipa/freeipa/pull/544

keywords

None

test_coverage

None

reviewer

None

external_tracker

None

rhbz

None

tester

None

changelog

None

design

None

freeipa

Source Code

#6730 Harden client HTTPS connections Closed: fixed 7 years ago Opened 7 years ago by stlaz.

Metadata

#6730 Harden client HTTPS connections

Closed: fixed 7 years ago Opened 7 years ago by stlaz.