[FLUME-2547] Removing SSLv2Hello causes Java 6 clients to break - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 1.6.0, 1.5.2
Component/s: None
Labels:
None

Description

In Java 6, if the server side does not accept SSLv3, SSLv2Hello is required even if TLS is used. SSLv2Hello itself is not insecure so we should bring it back for compat with older Java versions

Attachments

Sub-Tasks

1.	Enable SSLv2Hello for Avro Source and NettyAvroRpcClient		Resolved	Hari Shreedharan
2.	Enable SSLv2Hello for HttpSource		Resolved	Hari Shreedharan

Activity

People

Assignee:: Hari Shreedharan

Reporter:: Hari Shreedharan

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 11/Nov/14 21:58

Updated:: 18/Dec/14 02:06

Resolved:: 12/Nov/14 15:49