-
-
Notifications
You must be signed in to change notification settings - Fork 121
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Update default minimum viewer protocol to TLSv1.2_2021 #117
Conversation
Thanks @venkatamutyala Could you please run the following and commit the result?
|
Done. Let me know if you folks need anything else. |
/terratest |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
One suggestion
Co-authored-by: Joe Niland <[email protected]>
Thanks @venkatamutyala the latest change will require the readme to be updated again |
/terratest |
Thanks for your contribution @venkatamutyala |
what
By default deprecated protocols are being supported:
This change would disable support for viewers using TLS 1.1 and TLS 1.0.
why
1.0 and 1.1 are known to be deprecated/insecure. To save folks trouble by their security teams using the latest version seems the most appropriate.
references
https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/secure-connections-supported-viewer-protocols-ciphers.html