Details
-
Bug
-
Status: Closed
-
Major
-
Resolution: Fixed
-
1.10.0, 1.11.0, 1.12.0, 1.13.0, 1.14.0
Description
Configuring ssl-protocols or ssl-ciphers properties, or per-component ssl properties, have no effect. Configuring ssl-protocols may effect the SSLContext selected and limit some of the protocols allowed but does not restrict to just the set specified in the property. The ssl-ciphers property does not limit cipher selection at all.
The result is that all ciphers allowed under the match SSLContext are allowed and negotiated. This can result in an unintended cipher being used in SSL/TLS communication.
Attachments
Issue Links
- causes
-
GEODE-9991 SSL protocol and cipher preferences are ignored when endpoint verification is enabled.
- Closed
- links to