Bug 1153313
| Summary: | Disable SSLv3 to mitigate POODLE CVE-2014-3566 | |||
|---|---|---|---|---|
| Product: | OKD | Reporter: | Luke Meyer <lmeyer> | |
| Component: | Security | Assignee: | Luke Meyer <lmeyer> | |
| Status: | CLOSED CURRENTRELEASE | QA Contact: | Xiaoli Tian <xtian> | |
| Severity: | high | Docs Contact: | ||
| Priority: | unspecified | |||
| Version: | 2.x | CC: | jhou, jialiu, lmeyer, mmccomas | |
| Target Milestone: | --- | |||
| Target Release: | --- | |||
| Hardware: | Unspecified | |||
| OS: | Unspecified | |||
| Whiteboard: | ||||
| Fixed In Version: | Doc Type: | Bug Fix | ||
| Doc Text: | Story Points: | --- | ||
| Clone Of: | ||||
| : | 1153319 (view as bug list) | Environment: | ||
| Last Closed: | 2015-07-07 23:44:26 UTC | Type: | Bug | |
| Regression: | --- | Mount Type: | --- | |
| Documentation: | --- | CRM: | ||
| Verified Versions: | Category: | --- | ||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
| Cloudforms Team: | --- | Target Upstream Version: | ||
| Embargoed: | ||||
| Bug Depends On: | ||||
| Bug Blocks: | 1153319 | |||
|
Description
Luke Meyer
2014-10-15 18:23:48 UTC
Commit pushed to master at https://github.com/openshift/origin-server https://github.com/openshift/origin-server/commit/77a0deb928071bac235dff804bbf506a9113e151 Bug 1153313: Disable SSLv3 Bug 1153313 - Disable SSLv3 to mitigate POODLE CVE-2014-3566 https://bugzilla.redhat.com/show_bug.cgi?id=1153313 Note this is Origin. I fully expect that Online devenvs control this configuration some other way. SSLv3 is disabled on online and origin. Mark this as verified. Commit pushed to master at https://github.com/openshift/li https://github.com/openshift/li/commit/447b45d70987c60d5889d29ec59c9acbfd75ac2e Bug 1153313 - Disable SSLv3 Probably irrelevant for online where confs come out of puppet, but best to have devenvs match origin. |