You are viewing a plain text version of this content. The canonical link for it is here.
Posted to notifications@accumulo.apache.org by "Sean Busbey (JIRA)" <ji...@apache.org> on 2014/11/07 19:22:34 UTC
[jira] [Created] (ACCUMULO-3318) Alter Thrift RPC components to
disallow SSLv3
Sean Busbey created ACCUMULO-3318:
-------------------------------------
Summary: Alter Thrift RPC components to disallow SSLv3
Key: ACCUMULO-3318
URL: https://issues.apache.org/jira/browse/ACCUMULO-3318
Project: Accumulo
Issue Type: Sub-task
Components: proxy, rpc
Affects Versions: 1.6.0, 1.5.0
Reporter: Sean Busbey
Assignee: Josh Elser
Priority: Blocker
Fix For: 1.5.3, 1.6.2, 1.7.0
All components that rely on Thrift's secure transport need be updated to disallow SSLv3.
{quote}
Thrift:
http://stackoverflow.com/questions/26387099/securing-a-thrift-server-aginst-the-poodle-ssl-vulnerability
{quote}
{quote}
The easy way to check this is simply to stand up a tserver and try
connecting over SSLv3:
openssl s_client -connect localhost:12345 -ssl3
{quote}
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)