kolla-ansible

History

Kevin Tibi 16df54eaa5 Disable TLS 1.1 on haproxy While it is possible to implement countermeasures against some attacks on TLS, migrating to a later version of TLS (TLS 1.2 is strongly encouraged) is the only reliable method to protect against the current protocol vulnerabilities.[1] [1] https://blog.pcisecuritystandards.org/are-you-ready-for-30-june-2018-sayin-goodbye-to-ssl-early-tls Change-Id: I44f67e3a49bb00fea069d29c46b3e86404c7df0b	2018-07-20 11:10:33 +02:00
..
notes	Disable TLS 1.1 on haproxy	2018-07-20 11:10:33 +02:00
source	Update reno for stable/queens	2018-03-01 16:51:56 +00:00

Kevin Tibi 16df54eaa5 Disable TLS 1.1 on haproxy

While it is possible to implement countermeasures against some attacks
on TLS, migrating to a later version of TLS (TLS 1.2 is strongly
encouraged) is the only reliable method to protect against
the current protocol vulnerabilities.[1]

[1] https://blog.pcisecuritystandards.org/are-you-ready-for-30-june-2018-sayin-goodbye-to-ssl-early-tls

Change-Id: I44f67e3a49bb00fea069d29c46b3e86404c7df0b

2018-07-20 11:10:33 +02:00

notes

Disable TLS 1.1 on haproxy

2018-07-20 11:10:33 +02:00

source

Update reno for stable/queens

2018-03-01 16:51:56 +00:00