Kevin Tibi
|
16df54eaa5
|
Disable TLS 1.1 on haproxy
While it is possible to implement countermeasures against some attacks
on TLS, migrating to a later version of TLS (TLS 1.2 is strongly
encouraged) is the only reliable method to protect against
the current protocol vulnerabilities.[1]
[1] https://blog.pcisecuritystandards.org/are-you-ready-for-30-june-2018-sayin-goodbye-to-ssl-early-tls
Change-Id: I44f67e3a49bb00fea069d29c46b3e86404c7df0b
|
2018-07-20 11:10:33 +02:00 |
|