Uploaded image for project: 'Red Hat Advanced Cluster Management'
  1. Red Hat Advanced Cluster Management
  2. ACM-3295

Remove 3des cipher for insights-metrics deployment

XMLWordPrintable

    • False
    • None
    • False
    • Observability Sprint 2023-01, QE Sprint 2023-04
    • Low
    • No

      Description of problem:

      Address the problem reported here https://issues.redhat.com/browse/ACM-2613

      Steps to Reproduce:

       

      Run secure-engineering  deployment and exec into the pod and run 

      nmap Pn -sV --script ssl-enum-ciphers {}p 8443 insights{-}metrics 

      The command result shows  3des , which is the vulnerability. 

       
      apiVersion: batch/v1
      kind: Job
      metadata:
      name: sec-eng
      spec:
      template:

      1. This is the pod template
        spec:
        containers:
      • name: secure-engineering
        image: quay.io/open-cluster-management/sec:latest
        command: ['sh', '-c', 'echo "Hello, Kubernetes!" && sleep 3600']
        restartPolicy: OnFailure
        imagePullSecrets:
      • name: multiclusterhub-operator-pull-secret

        Version-Release number of selected component (if applicable):

        How reproducible:

      1.  

      Actual results:

      Expected results:

      Additional info:

            xdharmai@redhat.com XAVIER RAJESH DHARMAIYAN
            xdharmai@redhat.com XAVIER RAJESH DHARMAIYAN
            Xiang Yin Xiang Yin
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated:
              Resolved: