Skip to content

Commit

Permalink
backport of commit 94406d1 (hashicorp#19427)
Browse files Browse the repository at this point in the history 
Co-authored-by: Malte S. Stretz <mss@msquadrat.de>
  • Loading branch information
@hc-github-team-secure-vault-core @mss
hc-github-team-secure-vault-core and mss authored Mar 2, 2023
1 parent 3167443 commit 27c8b3c
Showing 1 changed file with 7 additions and 0 deletions.
7 changes: 7 additions & 0 deletions website/content/docs/configuration/listener/tcp.mdx
View file
Original file line number Diff line number Diff line change
Expand Up @@ -133,6 +133,13 @@ default value in the `"/sys/config/ui"` [API endpoint](/vault/api-docs/system/co
`tls_min_version` and `tls_max_version` parameters) are widely considered
insecure.

- `tls_max_version` `(string: "tls13")` – Specifies the maximum supported
version of TLS. Accepted values are "tls10", "tls11", "tls12" or "tls13".

~> **Warning**: TLS 1.1 and lower (`tls10` and `tls11` values for the
`tls_min_version` and `tls_max_version` parameters) are widely considered
insecure.

- `tls_cipher_suites` `(string: "")` – Specifies the list of supported
ciphersuites as a comma-separated-list. The list of all available ciphersuites
is available in the [Golang TLS documentation][golang-tls].
Expand Down

0 comments on commit 27c8b3c

Please sign in to comment.