Bug 1153313
Summary: | Disable SSLv3 to mitigate POODLE CVE-2014-3566 | |||
---|---|---|---|---|
Product: | OKD | Reporter: | Luke Meyer <lmeyer> | |
Component: | Security | Assignee: | Luke Meyer <lmeyer> | |
Status: | CLOSED CURRENTRELEASE | QA Contact: | Xiaoli Tian <xtian> | |
Severity: | high | Docs Contact: | ||
Priority: | unspecified | |||
Version: | 2.x | CC: | jhou, jialiu, lmeyer, mmccomas | |
Target Milestone: | --- | |||
Target Release: | --- | |||
Hardware: | Unspecified | |||
OS: | Unspecified | |||
Whiteboard: | ||||
Fixed In Version: | Doc Type: | Bug Fix | ||
Doc Text: | Story Points: | --- | ||
Clone Of: | ||||
: | 1153319 (view as bug list) | Environment: | ||
Last Closed: | 2015-07-07 23:44:26 UTC | Type: | Bug | |
Regression: | --- | Mount Type: | --- | |
Documentation: | --- | CRM: | ||
Verified Versions: | Category: | --- | ||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
Cloudforms Team: | --- | Target Upstream Version: | ||
Embargoed: | ||||
Bug Depends On: | ||||
Bug Blocks: | 1153319 |
Description
Luke Meyer
2014-10-15 18:23:48 UTC
Commit pushed to master at https://github.com/openshift/origin-server https://github.com/openshift/origin-server/commit/77a0deb928071bac235dff804bbf506a9113e151 Bug 1153313: Disable SSLv3 Bug 1153313 - Disable SSLv3 to mitigate POODLE CVE-2014-3566 https://bugzilla.redhat.com/show_bug.cgi?id=1153313 Note this is Origin. I fully expect that Online devenvs control this configuration some other way. SSLv3 is disabled on online and origin. Mark this as verified. Commit pushed to master at https://github.com/openshift/li https://github.com/openshift/li/commit/447b45d70987c60d5889d29ec59c9acbfd75ac2e Bug 1153313 - Disable SSLv3 Probably irrelevant for online where confs come out of puppet, but best to have devenvs match origin. |