Back to bug 1317812
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Tomas Jelinek | 2016-03-15 10:03:05 UTC | Assignee | tojeline | idevat |
| Tomas Jelinek | 2016-03-16 08:28:48 UTC | Priority | unspecified | high |
| Status | NEW | POST | ||
| Doc Text | Cause: There is no possibility to set SSL options and ciphers in pcsd. Consequence: If a vulnerability is found in a particular version of SSL/TLS protocol or a cipher or they are considered weak for other reasons, there is no easy way for users to disable the protocol version or cipher. Fix: Disable RC4 ciphers and TLS lower than 1.2 by default. Add possibility to configure SSL options and ciphers. Result: Weak ciphers are disabled by default. It is possible to set SSL options and ciphers so user can disable weak ciphers in future easily. | |||
| Severity | unspecified | high | ||
| Shane Bradley | 2016-03-16 13:29:21 UTC | Link ID | Red Hat Knowledge Base (Solution) 2197151 | |
| Tom Lavigne | 2016-03-16 19:57:35 UTC | CC | tlavigne | |
| Ivan Devat | 2016-03-18 14:47:29 UTC | Status | POST | MODIFIED |
| Fixed In Version | pcs-0.9.148-6.el6 | |||
| errata-xmlrpc | 2016-03-18 14:53:01 UTC | Status | MODIFIED | ON_QA |
| Radek Steiger | 2016-03-21 13:11:00 UTC | Status | ON_QA | VERIFIED |
| errata-xmlrpc | 2016-05-09 16:05:08 UTC | Status | VERIFIED | RELEASE_PENDING |
| errata-xmlrpc | 2016-05-10 19:27:34 UTC | Status | RELEASE_PENDING | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2016-05-10 15:27:34 UTC |
Back to bug 1317812