Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[YSQL] Set default TLS mode to >= 1.2 #10988

Open
iSignal opened this issue Jan 4, 2022 · 0 comments
Open

[YSQL] Set default TLS mode to >= 1.2 #10988

iSignal opened this issue Jan 4, 2022 · 0 comments
Labels
area/ysql Yugabyte SQL (YSQL) kind/enhancement This is an enhancement of an existing feature pgcm priority/medium Medium priority issue

Comments

@iSignal
Copy link
Contributor

iSignal commented Jan 4, 2022
edited by yugabyte-ci
Loading

Jira Link: DB-827

Description

The value for ssl_min_protocol_version in the default postgres conf file generated should be to disallow TLS versions less than 1.2. So it should be set to TLSv1.2. The current default version in code is TLSv1.

TLS 1.2 is supported by openssl since 2012.
TLS 1.3 is supported by openssl since 2018.

@proff4eg @ymahajan

Related: #10987
@iSignal iSignal added the area/ysql Yugabyte SQL (YSQL) label Jan 4, 2022
@yugabyte-ci yugabyte-ci added kind/bug This issue is a bug priority/medium Medium priority issue labels Jun 8, 2022
@yugabyte-ci yugabyte-ci added kind/enhancement This is an enhancement of an existing feature and removed kind/bug This issue is a bug labels Sep 18, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area/ysql Yugabyte SQL (YSQL) kind/enhancement This is an enhancement of an existing feature pgcm priority/medium Medium priority issue
Projects
YQL-beta
Status: No status
Milestone
No milestone
Development

No branches or pull requests
3 participants
@sushantrmishra @iSignal @yugabyte-ci