Uploaded image for project: 'Couchbase Server'
  1. Couchbase Server
  2. MB-58045

Remove support for TLS 1 and TLS 1.1

    XMLWordPrintable

Details

    • Untriaged
    • 0
    • Unknown

    Description

      We should entirely remove the ability to use TLS 1.0 and 1.1, which are already deprecated both by the standards bodies and in Couchbase Server as they are not considered secure.

      tlsMinVersion is already defaulting to TLS 1.2,  the REST API should only allow for tls1.2 or tls1.3 as the values

       

      Windows will soon remove TLS 1.0 and 1.1 at an Operating System level https://techcommunity.microsoft.com/t5/windows-it-pro-blog/tls-1-0-and-tls-1-1-soon-to-be-disabled-in-windows/ba-p/3887947 

      Attachments

        Issue Links

          blocks

          Bug - A problem which impairs or prevents the functions of the product. MB-58144 Modify documentation for tlsMinVersion in cli

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Closed
          relates to

          Task - A task that needs to be done. MB-57471 Remove support for TLS 1 and TLS 1.1 from memcached

          • Major - Major loss of function.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. DOC-10957 TLS 1.0 and TLS 1.1 deprecated in 7.2.0

          • Major - Major loss of function.
          • Resolved
          No reviews matched the request. Check your Options in the drop-down menu of this sections header.

          Activity

            People

              neelima.premsankar Neelima Premsankar
              ianmccloy Ian McCloy (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              6 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Gerrit Reviews

                  There are no open Gerrit changes

                  PagerDuty