valitydev/osquery-1
14
0
Fork 0
mirror of https://github.com/valitydev/osquery-1.git synced 2024-11-06 01:25:20 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Disable deprecated TLS versions 1.0, 1.1 (#6910)

Browse Source
This commit is contained in:
Mike Myers 2021-01-20 14:29:37 -08:00 committed by GitHub
parent a92b04106f
commit 51c44799f2
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
osquery/remote/transports/tls.cpp
View File

@ -153,7 +153,8 @@ http::Client::Options TLSTransport::getInternalOptions() {
}
options.openssl_ciphers(kTLSCiphers);
options.openssl_options(SSL_OP_NO_SSLv3 | SSL_OP_NO_SSLv2 | SSL_OP_ALL);
options.openssl_options(SSL_OP_NO_SSLv3 | SSL_OP_NO_SSLv2 | SSL_OP_NO_TLSv1 |
SSL_OP_NO_TLSv1_1 | SSL_OP_ALL);
if (client_certificate_file_.size() > 0) {
if (!osquery::isReadable(client_certificate_file_).ok()) {