Uploaded image for project: 'MariaDB MaxScale'
  1. MariaDB MaxScale
  2. MXS-4862

ssl_version should specify minimum version

Details

    • MXS-SPRINT-196, MXS-SPRINT-197

    Description

      The configuration value should be interpreted as a minimum version, banning any previous TLS versions. The default value "MAX" still allows all versions for backwards compatibility.

      Original Description:
      -----------------------------------
      SSL_VERSION configuration has default value of MAX. This will guarantee that the strongest available encryption is used. However, it allows deprecated versions of SSL:
      TLS 1 offered (deprecated)
      TLS 1.1 offered (deprecated)

      Customer would like to see a way to ensure that deprecated versions not be included. Examples might be:

      SSL_VERSION=MAX_NOT_DEPRECATED
      or
      SSL_VERSION=1.2,1.3

      Attachments

        Activity

          There are no comments yet on this issue.

          People

            esa.korhonen Esa Korhonen
            edward Edward Stoever
            Votes:
            2 Vote for this issue
            Watchers:
            6 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Git Integration

                Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.