Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Document default ciphers used by Zowe #3896

Open
zFernand0 opened this issue Sep 30, 2024 · 1 comment
Open

Document default ciphers used by Zowe #3896

zFernand0 opened this issue Sep 30, 2024 · 1 comment
Labels
area: apiml This issue is related to Zowe API Mediation Layer area: cli This issue is related to Zowe Command Line Interface (CLI) area: webui Issues related to Zowe Application Framework (zLUX) or Zowe Desktop (MVD)) type: enhancement New feature or request

Comments

@zFernand0
Copy link
Member

Description

We should document all default ciphers used/supported by Zowe.
Having it in a central location will be ideal.

Pages to Update

https://docs.zowe.org/stable/user-guide/api-mediation/configuration-at-tls/#ciphers
https://docs.zowe.org/stable/user-guide/mvd-configuration#defining-the-at-tls-rule

@zFernand0 zFernand0 added type: enhancement New feature or request area: cli This issue is related to Zowe Command Line Interface (CLI) area: apiml This issue is related to Zowe API Mediation Layer area: webui Issues related to Zowe Application Framework (zLUX) or Zowe Desktop (MVD)) labels Sep 30, 2024
@github-project-automation github-project-automation bot moved this to New Issues in Zowe CLI Squad Sep 30, 2024
@zFernand0 zFernand0 changed the title Issue with docs.zowe.org/stable/user-guide/api-mediation/configuration-at-tls/ Document default ciphers used by Zowe Sep 30, 2024
@1000TurquoisePogs
Copy link
Member

Those two pages are for AT-TLS, which is not the only TLS used, nor default.
Default (native) TLS of zowe servers (should & probably) is identical across the board since we follow security alerts to always have the most modern list.

One place you can see the list is here https://github.com/zowe/zlux-server-framework/blob/v2.x/staging/lib/unp-constants.js#L293-L307

When using AT-TLS, the user decides the ciphers. We can only recommend.
However, our recommendation should closely follow https://wiki.mozilla.org/Security/Server_Side_TLS as this is a regularly updated and respected resource

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
area: apiml This issue is related to Zowe API Mediation Layer area: cli This issue is related to Zowe Command Line Interface (CLI) area: webui Issues related to Zowe Application Framework (zLUX) or Zowe Desktop (MVD)) type: enhancement New feature or request
Projects
Status: New Issues
Development

No branches or pull requests

2 participants