f85e617a84
This patch adds an element that causes the terminated HTTPS certificates and keys to be stored in an encrypted ramfs path so they are encrypted at rest. Change-Id: Id0f80f311d37d5691087e855fb1291011451c851 Closes-Bug: #1627370
13 lines
421 B
YAML
13 lines
421 B
YAML
---
|
|
upgrade:
|
|
- To enabled encrypted ramfs storage for certificates
|
|
and keys, you must upgrade your amphora image.
|
|
deprecations:
|
|
- Amphora with a terminated HTTPS load balancer can
|
|
no longer be rebooted. If they reboot, they will
|
|
trigger a failover of the amphora.
|
|
security:
|
|
- Certificate and key storage for terminated HTTPS
|
|
load balancers is now in an encrypted ramfs path
|
|
inside the amphora.
|