You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
With changes dony by #1548, webhook server has TLSMinVersion configurable, while setting up webhook server with manager. However, there is no option to configure the TLSCiphers.
For TLSMinVersion set to 1.2, default TLS cipher suites, coming from Go crypto/tls library, include some insecure ciphers, which leave the system open to multiple vulnerabilities.
Similar issue raised earlier under #1431, which needs to be addressed for TLS 1.2 version set.
The text was updated successfully, but these errors were encountered:
With changes dony by #1548, webhook server has TLSMinVersion configurable, while setting up webhook server with manager. However, there is no option to configure the TLSCiphers.
For TLSMinVersion set to 1.2, default TLS cipher suites, coming from Go crypto/tls library, include some insecure ciphers, which leave the system open to multiple vulnerabilities.
Similar issue raised earlier under #1431, which needs to be addressed for TLS 1.2 version set.
The text was updated successfully, but these errors were encountered: