Description
We should disable SSLv3 in SSLFactory. This affects MR shuffle among others.
See CVE-2014-3566
We have context = SSLContext.getInstance("TLS"); in SSLFactory, but when I checked, I could still connect with SSLv3.
Attachments
Attachments
Issue Links
- is related to
-
HADOOP-11217 Disable SSLv3 in KMS
- Closed
-
HDFS-7274 Disable SSLv3 in HttpFS
- Closed
-
HADOOP-16000 Remove TLSv1 and SSLv2Hello from the default value of hadoop.ssl.enabled.protocols
- Resolved