Actions
User story #9502
closedDrop old protocol and acl for agents
Status:
Released
Priority:
N/A
Assignee:
Category:
System techniques
Target version:
Effort required:
Name check:
Fix check:
Regression:
Description
- We only generate key-based acl: improved security (and speed in cf-serverd, because we skip the very unefficient hostname comparison), get rid of all the DNS issues
allowlegacyconnects => { }
to completely block old protocol- Maybe add restriction on used protocols/cipher (allowtlsversion, allowciphers, tls_min_version, tls_ciphers)
Updated by Vincent MEMBRÉ almost 8 years ago
- Target version changed from 4.1.0~beta1 to 4.1.0~beta2
Updated by Vincent MEMBRÉ almost 8 years ago
- Target version changed from 4.1.0~beta2 to 4.1.0~beta3
Updated by Vincent MEMBRÉ almost 8 years ago
- Target version changed from 4.1.0~beta3 to 4.1.0~rc1
Updated by François ARMAND almost 8 years ago
- Target version changed from 4.1.0~rc1 to 4.2.0~beta1
Updated by Alexis Mousset over 7 years ago
- Subject changed from Add a "tls networking only" mode to Drop old protocol and acl for agents
- Parent task changed from #6363 to #10718
Updated by Alexis Mousset over 7 years ago
- Target version changed from 4.2.0~beta1 to 4.2.0~beta2
Updated by Vincent MEMBRÉ over 7 years ago
- Target version changed from 4.2.0~beta2 to 4.2.0~beta3
Updated by Vincent MEMBRÉ over 7 years ago
- Target version changed from 4.2.0~beta3 to 4.2.0~rc1
Updated by Vincent MEMBRÉ over 7 years ago
- Target version changed from 4.2.0~rc1 to 4.2.0~rc2
Updated by Vincent MEMBRÉ over 7 years ago
- Target version changed from 4.2.0~rc2 to 4.2.0
Updated by Vincent MEMBRÉ about 7 years ago
- Target version changed from 4.2.0 to 4.2.1
Updated by Vincent MEMBRÉ about 7 years ago
- Target version changed from 4.2.1 to 4.2.2
Updated by Alexis Mousset about 7 years ago
- Description updated (diff)
- Assignee set to Alexis Mousset
- Target version changed from 4.2.2 to 4.3.0~beta1
Updated by Alexis Mousset about 7 years ago
- Status changed from New to In progress
Updated by Alexis Mousset about 7 years ago
- Status changed from In progress to Pending technical review
- Assignee changed from Alexis Mousset to Benoît PECCATTE
- Pull Request set to https://github.com/Normation/rudder-techniques/pull/1214
Updated by Alexis Mousset about 7 years ago
- Status changed from Pending technical review to Pending release
Applied in changeset rudder-techniques|6fc4569d0fb89db13a9ac57695d7798e0bbe5c2a.
Updated by Vincent MEMBRÉ almost 7 years ago
- Related to Architecture #10718: Rudder 3.1 agents will not be compatible with Rudder >=4.3 added
Updated by Vincent MEMBRÉ almost 7 years ago
- Status changed from Pending release to Released
This bug has been fixed in Rudder 4.3.0~beta1 which was released today.
- 4.3.0~beta1: Announce Changelog
- Download: https://www.rudder-project.org/site/get-rudder/downloads/
Actions