Gitiles
Code Review Sign In
git01.mediatek.com / haproxy / 2f44a59c7fdb9e5767bd2d03bb5a2772fb5a8783
commit2f44a59c7fdb9e5767bd2d03bb5a2772fb5a8783[log] [tgz]
authorWilliam Lallemand <wlallemand@haproxy.com>Fri May 29 08:54:33 2020 +0200
committerWilliam Lallemand <wlallemand@haproxy.org>Fri May 29 09:05:45 2020 +0200
tree6c4aa7e29140ea42ac9639a8bff893809f368d77
parent56192cc60b786f2c82925411d8b2ccd7d9f97d84 [diff]
MEDIUM: ssl: use TLSv1.2 as the minimum default on bind lines

Since HAProxy 1.8, the TLS default minimum version was set to TLSv1.0 to
avoid using the deprecated SSLv3.0. Since then, the standard changed and
the recommended TLS version is now TLSv1.2.

This patch changes the minimum default version to TLSv1.2 on bind lines.
If you need to use prior TLS version, this is still possible by
using the ssl-min-ver keyword.
1 file changed
tree: 6c4aa7e29140ea42ac9639a8bff893809f368d77
  1. .github/
  2. contrib/
  3. doc/
  4. ebtree/
  5. examples/
  6. include/
  7. reg-tests/
  8. scripts/
  9. src/
  10. tests/
  11. .cirrus.yml
  12. .gitignore
  13. .travis.yml
  14. BRANCHES
  15. CHANGELOG
  16. CONTRIBUTING
  17. INSTALL
  18. LICENSE
  19. MAINTAINERS
  20. Makefile
  21. README
  22. ROADMAP
  23. SUBVERS
  24. VERDATE
  25. VERSION