Zoltan Borok-Nagy has uploaded this change for review. ( http://gerrit.cloudera.org:8080/18351
Change subject: IMPALA-11195 (part 2): Disable SSL session renegotiations in the Thrift server ...................................................................... IMPALA-11195 (part 2): Disable SSL session renegotiations in the Thrift server SSL renegotiation has had a couple of CVEs in the past. This patch disables TLS ciphers renegotiation for TLSv1.2 and prior protocol versions in the Impala Thirft server. Renegotiation is not possible in a TLSv1.3 connection. This patch disables renegotiations by using a patched version of Thrift. Change-Id: I497ccf6fcfb397fc961c3422a34128894604d1e4 --- M bin/impala-config.sh 1 file changed, 2 insertions(+), 2 deletions(-) git pull ssh://gerrit.cloudera.org:29418/Impala-ASF refs/changes/51/18351/1 -- To view, visit http://gerrit.cloudera.org:8080/18351 To unsubscribe, visit http://gerrit.cloudera.org:8080/settings Gerrit-Project: Impala-ASF Gerrit-Branch: master Gerrit-MessageType: newchange Gerrit-Change-Id: I497ccf6fcfb397fc961c3422a34128894604d1e4 Gerrit-Change-Number: 18351 Gerrit-PatchSet: 1 Gerrit-Owner: Zoltan Borok-Nagy <borokna...@cloudera.com>
