How to enforce Jenkins to use TLS 1.2 - 走看看

zoukankan html css js c++ java

How to enforce Jenkins to use TLS 1.2

Problem: security scan reports "Vulnerabilities: 20007 - SSL Version 2 and 3 Protocol Detection" against jenkins server.

Resolution: enforce Jenkins to use TLS 1.2, update C:Program Files (x86)Jenkinsjenkins.xml, add param as below in bold red, then restart jenkins.
<executable>%BASE%jreinjava</executable>
<arguments>-Xrs -Xmx256m -Dhudson.lifecycle=hudson.lifecycle.WindowsServiceLifecycle -jar "%BASE%jenkins.war" -Dhttps.protocols=TLSv1.2 --httpPort=8080 --webroot="%BASE%war"</arguments>

Reference: How to enforce Jenkins to use TLS 1.2 (https://support.cloudbees.com/hc/en-us/articles/115003362911-How-to-enforce-Jenkins-to-use-TLS-1-2)
You can follow this KB to disable ciphers on your JVM Disabling Specific Ciphers In Jenkins or add this property to your Jenkins java properties -Dhttps.protocols=TLSv1.2

查看全文

相关阅读:
控制测试与实质性程序的关系
 【2020-02-23】一个生活视角的触发
 工作，拼的都是脏和累
 【2020-02-22】让偶然不再偶然
 【2020-02-21】当心自己的想象力
 【2020-02-20】想清楚，自己在为谁服务
 静态化与伪静态化的区别
 e3商城_day04
e3商城_day03
服务器，操作系统，虚拟机，虚拟主机，IP地址

原文地址：https://www.cnblogs.com/qdlk/p/10307044.html

Copyright © 2011-2022 走看看