Code for disabling SSLv3 in OpenVPN yaml file to avoid SOC Vulnerabilities

Accenture / adop-aws

This repository contains a hardened, 2-tiered implementation of the DevOps Platform -> https://github.com/Accenture/adop-docker-compose

Apache License 2.0

35 stars 33 forks source link

Code for disabling SSLv3 in OpenVPN yaml file to avoid SOC Vulnerabilities #9

Closed ranaskr closed 6 years ago

ranaskr commented 6 years ago

Added an extra configuration in User Data to disable SSLv3 and enable TLSv1.2 for OpenVPN Web Server. This will avoid poodle attacks and take care of SOC Vulnerabilities related to OpenVPN Server

RobertNorthard commented 6 years ago

Thanks @ranaskr please can you rebase?

ranaskr commented 6 years ago

@RobertNorthard - Is there a need to rebase? My PR from the forked repo is 1 commit ahead of master branch of this repo. Shouldn't it be a simple merge?