Uploaded image for project: 'Kudu'
  1. Kudu
  2. KUDU-1873

Audit TLS ciphers

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • 1.2.0
    • 1.3.0
    • rpc, security

    Description

      We should audit our cipher lists on the server and client, making sure to disable known-insecure ciphers (DES, 3DES), and making sure to prioritize secure and high-performance ciphers (AES-GCM). In particular, the default cipher lists are very different across the system version of OpenSSL we support.

      Attachments

        Activity

          People

            danburkert Dan Burkert
            danburkert Dan Burkert
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: