Uploaded image for project: 'Red Hat Advanced Cluster Management'
  1. Red Hat Advanced Cluster Management
  2. ACM-3919

[release 2.7] Remove 3des cipher for insights-metrics deployment

XMLWordPrintable

    • 1
    • False
    • None
    • False
    • No
    • Observability Sprint 2023-03
    • Low

      Description of problem:

      Address the problem reported here https://issues.redhat.com/browse/ACM-2613

      Steps to Reproduce:

       

      Run secure-engineering  deployment and exec into the pod and run 

      nmap Pn -sV --script ssl-enum-ciphers {}p 8443 insights{-}metrics 

      The command result shows  3des , which is the vulnerability. 

       
      apiVersion: batch/v1
      kind: Job
      metadata:
      name: sec-eng
      spec:
      template:

      1. This is the pod template
        spec:
        containers:
      • name: secure-engineering
        image: quay.io/open-cluster-management/sec:latest
        command: ['sh', '-c', 'echo "Hello, Kubernetes!" && sleep 3600']
        restartPolicy: OnFailure
        imagePullSecrets:
      • name: multiclusterhub-operator-pull-secret

        Version-Release number of selected component (if applicable):

        How reproducible:

      1.  

      Actual results:

      Expected results:

      Additional info:

        1. image-2023-04-20-13-23-18-537.png
          image-2023-04-20-13-23-18-537.png
          145 kB

            rhn-support-xiyin Xiang Yin
            xdharmai@redhat.com XAVIER RAJESH DHARMAIYAN
            Xiang Yin Xiang Yin
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: