Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-10520

Add SSL cipher restriction capability

    XMLWordPrintable

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major - P3
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 2.5.3
    • Component/s: Security
    • Labels:
      None
    • Backwards Compatibility:
      Fully Compatible

      Description

      Need to call SSL_CTX_set_cipher_list() and pass it a list of ciphers (provided by the administrator via config). Also may want to expose SSL_get_ciphers() for debugging purposes.

        Attachments

          Issue Links

          is depended on by

          Task - A task that needs to be done. DOCS-1921 Document: Add SSL cipher restriction capability

          • Major - P3 - Major loss of function.
          • Closed
          is duplicated by

          Question - SERVER-14145 Restrict supported cipher over ssl

          • Major - P3 - Major loss of function.
          • Closed
          related to

          New Feature - A new feature of the product, which has yet to be developed. SERVER-6641 Ability to configure supported ciphers when using SSL

          • Major - P3 - Major loss of function.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. SERVER-29568 Enable configuration of OpenSSL cipher suite via setParameter

          • Major - P3 - Major loss of function.
          • Closed

            Activity

              People

              • Votes:
                0 Vote for this issue
                Watchers:
                5 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: