I was pushed to configure haproxy for LDAP TLS 1.2 -> TLS 1.3 conversion. Currently huge number of solutions like Graylog don't accept ciphers offered by LDAP interface. When we get more secure LDAP ?
David
Cybersecurity
DevOps Cloud (ADM)
IT Operations Cloud
I was pushed to configure haproxy for LDAP TLS 1.2 -> TLS 1.3 conversion. Currently huge number of solutions like Graylog don't accept ciphers offered by LDAP interface. When we get more secure LDAP ?
David
Good question, can I upvote a question as this needs to be answered.
This is concerning!:
openSSL version in eDirectory 9.2.8: OpenSSL 1.0.2 zg (source: https://www.netiq.com/documentation/edirectory-92/edirectory928_releasenotes/data/edirectory928_releasenotes.html )
OpenSSL 1.0.x is out of support from 2019 (source: https://mta.openssl.org/pipermail/openssl-users/2018-September/008706.html )
Note is seems TLS 1.3 is only offered from OpenSSL 1.1.1+
I received this response from vendor "
OpenSSL 1.0.2 zg is under long term support contract for OpenText (Microfocus).
If any vulnerability/issue detected would receive fix to it."
So the concern about "out of support" is addressed.