You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@activemq.apache.org by "Matt H (Jira)" <ji...@apache.org> on 2022/04/12 20:22:00 UTC
[jira] [Updated] (AMQNET-766) Modify SslTransport to use SslProtocols.None or allow a way to change this value
[ https://issues.apache.org/jira/browse/AMQNET-766?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Matt H updated AMQNET-766:
--------------------------
Description:
AMQNET-476 points out that SslTransport.cs defaults to use SslProtocols.Default which is TLS 1.0 in their documentation. The [Microsoft documentation|https://docs.microsoft.com/en-us/dotnet/api/system.security.authentication.sslprotocols?redirectedfrom=MSDN&view=net-6.0] also says that you should not use Default and should use a value of None.
This request is to either:
# Change {{{}SslTransport.GetAllowedProtocol(){}}}'s default to be '{{{}SslProtocols.None{}}}'
# Have a way other than the URI to set this programmatically or as a property. The current approach of setting it via the URI as '{{{}?transport.SslProtocol=Tls12{}}}' does not work for all if you are using the same setting with different clients. This format isn't a valid ActiveMQ property and fails with clients other than NMS.
was:
[AMQNET-476] points out that SslTransport.cs defaults to use SslProtocols.Default which is TLS 1.0 in their documentation. The Microsoft documentation also says that you should not use Default and should use a value of None.
This request is to either:
# Change {{{}SslTransport.GetAllowedProtocol(){}}}'s default to be '{{{}SslProtocols.None{}}}'
# Have a way other than the URI to set this programmatically or as a property. The current approach of setting it via the URI as '{{{}?transport.SslProtocol=Tls12{}}}' does not work for all if you are using the same setting with different clients. This format isn't a valid ActiveMQ property and fails with clients other than NMS.
> Modify SslTransport to use SslProtocols.None or allow a way to change this value
> --------------------------------------------------------------------------------
>
> Key: AMQNET-766
> URL: https://issues.apache.org/jira/browse/AMQNET-766
> Project: ActiveMQ .Net
> Issue Type: New Feature
> Components: NMS
> Affects Versions: 1.8.0
> Reporter: Matt H
> Priority: Major
>
> AMQNET-476 points out that SslTransport.cs defaults to use SslProtocols.Default which is TLS 1.0 in their documentation. The [Microsoft documentation|https://docs.microsoft.com/en-us/dotnet/api/system.security.authentication.sslprotocols?redirectedfrom=MSDN&view=net-6.0] also says that you should not use Default and should use a value of None.
> This request is to either:
> # Change {{{}SslTransport.GetAllowedProtocol(){}}}'s default to be '{{{}SslProtocols.None{}}}'
> # Have a way other than the URI to set this programmatically or as a property. The current approach of setting it via the URI as '{{{}?transport.SslProtocol=Tls12{}}}' does not work for all if you are using the same setting with different clients. This format isn't a valid ActiveMQ property and fails with clients other than NMS.
--
This message was sent by Atlassian Jira
(v8.20.1#820001)