Details
-
Bug
-
Resolution: Fixed
-
Major
-
7.6.0
-
Untriaged
-
0
-
Unknown
Description
We should entirely remove the ability to use TLS 1.0 and 1.1, which are already deprecated both by the standards bodies and in Couchbase Server as they are not considered secure.
tlsMinVersion is already defaulting to TLS 1.2, the REST API should only allow for tls1.2 or tls1.3 as the values
Windows will soon remove TLS 1.0 and 1.1 at an Operating System level https://techcommunity.microsoft.com/t5/windows-it-pro-blog/tls-1-0-and-tls-1-1-soon-to-be-disabled-in-windows/ba-p/3887947
Attachments
Issue Links
For Gerrit Dashboard: MB-58045 | ||||||
---|---|---|---|---|---|---|
# | Subject | Branch | Project | Status | CR | V |
194845,1 | MB-58045: Remove TLSv1 and TLSv1.1 support | master | ns_server | Status: ABANDONED | 0 | 0 |
194848,2 | MB-58045: Remove support for TLSv1/TLSv1.1 | master | ns_server | Status: ABANDONED | 0 | 0 |
194883,3 | MB-58045: Set default minTlsVersion to 1.2. | master | cbauth | Status: MERGED | +2 | +1 |
195077,10 | MB-58045: Remove support for TLSv1/TLSv1.1. | master | ns_server | Status: MERGED | +2 | +1 |
195508,4 | MB-58144 Remove old TLS from docs | master | couchbase-cli | Status: MERGED | +2 | +1 |