2176547 – [cee/sd][ceph-dashboard] Disabling TLSv1.2 completely on the ceph-dashboard.

Bug 2176547 - [cee/sd][ceph-dashboard] Disabling TLSv1.2 completely on the ceph-dashboard.

Summary: [cee/sd][ceph-dashboard] Disabling TLSv1.2 completely on the ceph-dashboard.

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat Ceph Storage
Classification:	Red Hat Storage
Component:	Ceph-Dashboard
Sub Component:
Version:	5.2
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	medium
Target Milestone:	---
Target Release:	5.3z2
Assignee:	Ernesto Puerta
QA Contact:	Sayalee
Docs Contact:	Akash Raj
URL:
Whiteboard:
Duplicates (1):	2186642 (view as bug list)
Depends On:
Blocks:	2185621
TreeView+	depends on / blocked

Reported:	2023-03-08 16:12 UTC by Milind
Modified:	2023-05-19 07:10 UTC (History)
CC List:	7 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:	.TLS 1.2 protocols and cypher suites are no longer supported Previously, some TLS 1.2 cypher suites were vulnerable to ROBOT attacks. Although modern browsers favoured TLS 1.3 over 1.2, under specific circumstances, a bad actor could have forced the server to accept a TLS 1.2 session over a vulnerable protocol-cypher suite (RSA) and would manage to obtain a text signed by the server with its private certificate. With this fix, support for TLS 1.2 protocols and cypher suites is removed and only TLS 1.3 sessions are accepted.
Clone Of:
Environment:
Last Closed:	2023-04-11 20:07:59 UTC
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Links
System	ID	Priority	Status	Summary	Last Updated
Ceph Project Bug Tracker	58942	None	None	None	2023-03-09 13:30:17 UTC
Github	ceph ceph pull 50494	None	Merged	mgr/dashboard: force TLS 1.3	2023-03-14 06:30:24 UTC
Red Hat Issue Tracker	RHCEPH-6245	None	None	None	2023-03-08 16:16:26 UTC
Red Hat Issue Tracker	RHCSDASH-942	None	None	None	2023-03-08 16:16:38 UTC
Red Hat Product Errata	RHBA-2023:1732	None	None	None	2023-04-11 20:08:56 UTC

Description Milind 2023-03-08 16:12:39 UTC

Comment 13 errata-xmlrpc 2023-04-11 20:07:59 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Red Hat Ceph Storage 5.3 Bug Fix update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2023:1732

Comment 14 lema 2023-04-26 04:59:33 UTC

*** Bug 2186642 has been marked as a duplicate of this bug. ***

Note You need to log in before you can comment on or make changes to this bug.