search

shabiel / M-Web-Server

A YottaDB and Caché compatible HTTP server
Apache License 2.0
24 stars 19 forks source link

https server #46

Closed mabramowicz closed 4 years ago

mabramowicz commented 4 years ago

Hi!

It is possible to force TLS 1.2 only?

I am using key and certificate, this standard way defined in documentation.

I can connect to server with TLS 1.0, 1.1, but it looks security team force to use 1.2.

Kind regards michal abramowicz

shabiel commented 4 years ago

Michal,

Do you use YottaDB or GTM or Cache?

On Thu, Jul 9, 2020 at 9:56 AM Michal Abramowicz notifications@github.com wrote:

Hi!

It is possible to force TLS 1.2 only?

I am using key and certificate, this standard way defined in documentation.

I can connect to server with TLS 1.0, 1.1, but it looks security team force to use 1.2.

Kind regards michal abramowicz

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub, or unsubscribe.

mabramowicz commented 4 years ago

Hi!

It is running on yottadb.

config file: gtmcrypt_config.libconfig

tls: { edf: { format: "PEM"; cert: "/u01/edf/cert/mycert.pem"; key: "/u01/edf/cert/mycert.key"; } }

installed openssl packages:

openssl-libs-1.0.2k-19.0.1.el7.x86_64 openssl-devel-1.0.2k-19.0.1.el7.x86_64 openssl-1.0.2k-19.0.1.el7.x86_64

used package: yottadb_r124_rhel7_x8664_pro.tgz

job is started like that

./dm <<EOF do JOB^VPRJREQ(8443,"edf") halt EOF

Kind regards Michal Abramowicz

shabiel commented 4 years ago

Okay. Take a look here: https://docs.yottadb.com/AdminOpsGuide/tls.html

And since you use this in production, if you have support with YottaDB LLC, you should contact them with any issues in TLS.

--Sam

On Fri, Jul 10, 2020 at 5:48 AM Michal Abramowicz notifications@github.com wrote:

Hi!

It is running on yottadb.

config file: gtmcrypt_config.libconfig

tls: { edf: { format: "PEM"; cert: "/u01/edf/cert/mycert.pem"; key: "/u01/edf/cert/mycert.key"; } }

installed openssl packages:

openssl-libs-1.0.2k-19.0.1.el7.x86_64 openssl-devel-1.0.2k-19.0.1.el7.x86_64 openssl-1.0.2k-19.0.1.el7.x86_64

used package: yottadb_r124_rhel7_x8664_pro.tgz

job is started like that

./dm <<EOF do JOB^VPRJREQ(8443,"edf") halt EOF

Kind regards Michal Abramowicz

— You are receiving this because you commented. Reply to this email directly, view it on GitHub, or unsubscribe.

mabramowicz commented 4 years ago

Thanks for answer.

So I will go to yottadb ...

Kind regards Michal