public static final String SSL_ENABLED_PROTOCOLS_DEFAULT =
TLSv1 and SSLv2Hello are considered to be vulnerable. Let's remove these by default.
"hadoop.ssl.enabled.protocols" should be considered in httpserver2
Remove Unsupported SSL/TLS Versions from Docs/Properties
SSLFactory shouldn't allow SSLv3
Enable TLS v1.1 and 1.2