16df54eaa5
While it is possible to implement countermeasures against some attacks on TLS, migrating to a later version of TLS (TLS 1.2 is strongly encouraged) is the only reliable method to protect against the current protocol vulnerabilities.[1] [1] https://blog.pcisecuritystandards.org/are-you-ready-for-30-june-2018-sayin-goodbye-to-ssl-early-tls Change-Id: I44f67e3a49bb00fea069d29c46b3e86404c7df0b
6 lines
95 B
YAML
6 lines
95 B
YAML
---
|
|
security:
|
|
- |
|
|
Disable TLS 1.1 on haproxy for external network if
|
|
tls is enabled.
|