openstack/kolla-ansible
Code Issues Proposed changes
354894e2e9
kolla-ansible/ansible/roles/haproxy/templates
History
Kevin Tibi 16df54eaa5 Disable TLS 1.1 on haproxy 
While it is possible to implement countermeasures against some attacks
on TLS, migrating to a later version of TLS (TLS 1.2 is strongly
encouraged) is the only reliable method to protect against
the current protocol vulnerabilities.[1]

[1] https://blog.pcisecuritystandards.org/are-you-ready-for-30-june-2018-sayin-goodbye-to-ssl-early-tls

Change-Id: I44f67e3a49bb00fea069d29c46b3e86404c7df0b
2018-07-20 11:10:33 +02:00
..
haproxy.cfg.j2 Disable TLS 1.1 on haproxy 2018-07-20 11:10:33 +02:00
haproxy.json.j2 Compatible with ubuntu 18.04 2018-05-16 18:00:44 +08:00
keepalived.conf.j2 keepalived: ability to use unicast instead of multicast 2018-02-27 08:00:53 +00:00
keepalived.json.j2 Change default permissions in jinja templates. 2017-05-26 12:29:02 +01:00