Details
Description
core-default.xml
public static final String SSL_ENABLED_PROTOCOLS_DEFAULT = "TLSv1,SSLv2Hello,TLSv1.1,TLSv1.2";
TLSv1 and SSLv2Hello are considered to be vulnerable. Let's remove these by default.
Attachments
Attachments
Issue Links
- is related to
-
HADOOP-15169 "hadoop.ssl.enabled.protocols" should be considered in httpserver2
-
- Resolved
-
-
HADOOP-18140 Update default value of hadoop.ssl.enabled.protocols in the EncryptedShuffle doc
-
- Resolved
-
-
HADOOP-16549 Remove Unsupported SSL/TLS Versions from Docs/Properties
-
- Resolved
-
- relates to
-
HADOOP-11243 SSLFactory shouldn't allow SSLv3
-
- Closed
-
-
HADOOP-12817 Enable TLS v1.1 and 1.2
-
- Resolved
-