Project

General

Profile

Actions

User story #9502

closed

Drop old protocol and acl for agents

Added by Alexis Mousset over 6 years ago. Updated about 5 years ago.

Status:
Released
Priority:
N/A
Category:
System techniques
Target version:
UX impact:
Suggestion strength:
User visibility:
Effort required:
Regression:

Description

  • We only generate key-based acl: improved security (and speed in cf-serverd, because we skip the very unefficient hostname comparison), get rid of all the DNS issues
  • allowlegacyconnects => { } to completely block old protocol
  • Maybe add restriction on used protocols/cipher (allowtlsversion, allowciphers, tls_min_version, tls_ciphers)

Related issues 1 (0 open1 closed)

Related to Rudder - Architecture #10718: Rudder 3.1 agents will not be compatible with Rudder >=4.3RejectedActions
Actions #1

Updated by Alexis Mousset about 6 years ago

  • Parent task set to #6363
Actions #2

Updated by Vincent MEMBRÉ about 6 years ago

  • Target version changed from 4.1.0~beta1 to 4.1.0~beta2
Actions #3

Updated by Vincent MEMBRÉ about 6 years ago

  • Target version changed from 4.1.0~beta2 to 4.1.0~beta3
Actions #4

Updated by Vincent MEMBRÉ almost 6 years ago

  • Target version changed from 4.1.0~beta3 to 4.1.0~rc1
Actions #5

Updated by François ARMAND almost 6 years ago

  • Target version changed from 4.1.0~rc1 to 4.2.0~beta1
Actions #6

Updated by Alexis Mousset almost 6 years ago

  • Subject changed from Add a "tls networking only" mode to Drop old protocol and acl for agents
  • Parent task changed from #6363 to #10718
Actions #7

Updated by Alexis Mousset over 5 years ago

  • Target version changed from 4.2.0~beta1 to 4.2.0~beta2
Actions #8

Updated by Vincent MEMBRÉ over 5 years ago

  • Target version changed from 4.2.0~beta2 to 4.2.0~beta3
Actions #9

Updated by Vincent MEMBRÉ over 5 years ago

  • Target version changed from 4.2.0~beta3 to 4.2.0~rc1
Actions #10

Updated by Vincent MEMBRÉ over 5 years ago

  • Target version changed from 4.2.0~rc1 to 4.2.0~rc2
Actions #11

Updated by Vincent MEMBRÉ over 5 years ago

  • Target version changed from 4.2.0~rc2 to 4.2.0
Actions #12

Updated by Vincent MEMBRÉ over 5 years ago

  • Target version changed from 4.2.0 to 4.2.1
Actions #13

Updated by Vincent MEMBRÉ over 5 years ago

  • Target version changed from 4.2.1 to 4.2.2
Actions #14

Updated by Alexis Mousset over 5 years ago

  • Description updated (diff)
  • Assignee set to Alexis Mousset
  • Target version changed from 4.2.2 to 4.3.0~beta1
Actions #15

Updated by Alexis Mousset over 5 years ago

  • Status changed from New to In progress
Actions #16

Updated by Alexis Mousset over 5 years ago

  • Status changed from In progress to Pending technical review
  • Assignee changed from Alexis Mousset to Benoît PECCATTE
  • Pull Request set to https://github.com/Normation/rudder-techniques/pull/1214
Actions #17

Updated by Alexis Mousset over 5 years ago

  • Status changed from Pending technical review to Pending release
Actions #18

Updated by Vincent MEMBRÉ about 5 years ago

  • Parent task deleted (#10718)
Actions #19

Updated by Vincent MEMBRÉ about 5 years ago

  • Related to Architecture #10718: Rudder 3.1 agents will not be compatible with Rudder >=4.3 added
Actions #20

Updated by Vincent MEMBRÉ about 5 years ago

  • Status changed from Pending release to Released

This bug has been fixed in Rudder 4.3.0~beta1 which was released today.

Actions

Also available in: Atom PDF