Uploaded image for project: 'Product Technical Learning'
  1. Product Technical Learning
  2. PTL-5593

RH358-5: Excessive TLS options specified in GE steps (specified by defaults)

XMLWordPrintable

    • Icon: Story Story
    • Resolution: Done
    • Icon: Major Major
    • RH358 - RHEL 8.1 1 20200707
    • RH358 - RHEL 8.1 1 20200713, RH358 - RHEL 8.1 0
    • RH358
    • None
    • ILT
    • en-US (English)

      URL:
      Reporter RHNID:
      Section: -
      Language: en-US (English)
      Workaround: simplify solution to match the described outcome.

      Description: Outcome of the practice Configure a TLS enabled virtual host is not reflected in the provided solution. Main issue students are complaining about is the overly complex /etc/httpd/conf.d/wwwX.conf file.

      step 4.1
      SSLProtocol, SSLCipherSuite, SSLHonorCipherOrder are already defined in the global SSL config file AND the outcome does not require a change from this default.

      step 4.3
      the rewrite rule is over engineerd. Also current Apache documentation
      (/manual/rewrite/avoid.html) recommends NOT using the rewrite engine in use cases such as this, bus use the rewrite rule, but use the redirect rule instead.

              rht-sbonnevi Steven Bonneville
              rmegens Rik Megens (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved: