Uploaded image for project: 'Geode'
  1. Geode
  2. GEODE-8419

SSL/TLS protocol and cipher suite configuration is ignored

    XMLWordPrintableJSON

Details

    Description

      Configuring ssl-protocols or ssl-ciphers properties, or per-component ssl properties, have no effect. Configuring ssl-protocols may effect the SSLContext selected and limit some of the protocols allowed but does not restrict to just the set specified in the property. The ssl-ciphers property does not limit cipher selection at all.

      The result is that all ciphers allowed under the match SSLContext are allowed and negotiated. This can result in an unintended cipher being used in SSL/TLS communication.

      Attachments

        Activity

          People

            bschuchardt Bruce J Schuchardt
            jbarrett Jacob Barrett
            Votes:
            0 Vote for this issue
            Watchers:
            6 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: