You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues-all@impala.apache.org by "Thomas Tauber-Marshall (Jira)" <ji...@apache.org> on 2021/01/25 20:05:00 UTC

[jira] [Commented] (IMPALA-10454) Bump --ssl_minimum_version to tls1.2

    [ https://issues.apache.org/jira/browse/IMPALA-10454?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17271644#comment-17271644 ] 

Thomas Tauber-Marshall commented on IMPALA-10454:
-------------------------------------------------

Additional note here: this is made possible by Impala 4.0 dropping support for Python 2.6 (via dropping support for Centos 6) which doesn't support tls 1.2

> Bump --ssl_minimum_version to tls1.2
> ------------------------------------
>
>                 Key: IMPALA-10454
>                 URL: https://issues.apache.org/jira/browse/IMPALA-10454
>             Project: IMPALA
>          Issue Type: Improvement
>          Components: Security
>            Reporter: Thomas Tauber-Marshall
>            Assignee: Thomas Tauber-Marshall
>            Priority: Major
>
> TLS versions < 1.2 are now considered insecure. We should bump the default TLS version from its current value of 1.0 to 1.2 to improve Impala's default security.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

---------------------------------------------------------------------
To unsubscribe, e-mail: issues-all-unsubscribe@impala.apache.org
For additional commands, e-mail: issues-all-help@impala.apache.org