You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cloudstack.apache.org by "Gabriel Beims Bräscher (JIRA)" <ji...@apache.org> on 2017/08/04 13:18:00 UTC

[jira] [Resolved] (CLOUDSTACK-9977) Enhance SSL protocol used by Console Proxy

     [ https://issues.apache.org/jira/browse/CLOUDSTACK-9977?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Gabriel Beims Bräscher resolved CLOUDSTACK-9977.
------------------------------------------------
    Resolution: Fixed

> Enhance SSL protocol used by Console Proxy
> ------------------------------------------
>
>                 Key: CLOUDSTACK-9977
>                 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-9977
>             Project: CloudStack
>          Issue Type: Improvement
>      Security Level: Public(Anyone can view this level - this is the default.) 
>            Reporter: Gabriel Beims Bräscher
>            Assignee: Gabriel Beims Bräscher
>            Priority: Minor
>         Attachments: SSLReportA.png, SSLReportC.png
>
>
> Current SSL protocol and ciphers used in SystemVMs are not the recommended. To analyze it is possible to use tests such as from SSL Labs (https://www.ssllabs.com/ssltest/).
> The attached image 'SSLReportC' shows the SSL report of console proxy with grade capped to C. With a few changes, it is possible to change it to the report from the attached image 'SSLReportA' (A-).



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)