[jira] [Work logged] (HIVE-25238) Make SSL cipher suites configurable for Hive Web UI and HS2

Mon, 14 Jun 2021 00:15:09 -0700 


     [ 
https://issues.apache.org/jira/browse/HIVE-25238?focusedWorklogId=610063&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-610063
 ]

ASF GitHub Bot logged work on HIVE-25238:
-----------------------------------------

                Author: ASF GitHub Bot
            Created on: 14/Jun/21 07:14
            Start Date: 14/Jun/21 07:14
    Worklog Time Spent: 10m 
      Work Description: yongzhi opened a new pull request #2385:
URL: https://github.com/apache/hive/pull/2385


   
   ### What changes were proposed in this pull request?
   When starting a jetty http server, one can explicitly exclude certain 
(unsecure)
   SSL cipher suites. This can be especially important, when Hive
   needs to be compliant with security regulations. Need add properties to 
support Hive WebUi and HiveServer2 to this
   For Hive Binary Cli Server, we can set include certain SSL cipher suites.
   
   ### Does this PR introduce _any_ user-facing change?
   Yes, need to document the new properties:
   hive.server2.binary.include.ciphersuites
   hive.server2.http.exclude.ciphersuites
   hive.server2.webui.exclude.ciphersuites
   
   
   ### How was this patch tested?
   Unit tests


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

For queries about this service, please contact Infrastructure at:
us...@infra.apache.org


Issue Time Tracking
-------------------

            Worklog Id:     (was: 610063)
    Remaining Estimate: 0h
            Time Spent: 10m

> Make SSL cipher suites configurable for Hive Web UI and HS2
> -----------------------------------------------------------
>
>                 Key: HIVE-25238
>                 URL: https://issues.apache.org/jira/browse/HIVE-25238
>             Project: Hive
>          Issue Type: Improvement
>          Components: HiveServer2, Web UI
>            Reporter: Yongzhi Chen
>            Assignee: Yongzhi Chen
>            Priority: Major
>          Time Spent: 10m
>  Remaining Estimate: 0h
>
> When starting a jetty http server, one can explicitly exclude certain 
> (unsecure)
> SSL cipher suites. This can be especially important, when Hive
> needs to be compliant with security regulations. Need add properties to 
> support Hive WebUi and HiveServer2 to this
> For Hive Binary Cli Server, we can set include certain SSL cipher suites. 



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Reply via email to