Hi,
I need info on whether TLS is supported, what version and if not supported what version of SSL is in use/available. The below list is what I can think of, anything else?
Log server web pages
rsyslog and log server communication
This is related to the new set of systems being built and the protocols/versions that will be allowed.
If TLS 1.2 is not supported, then we need an upgrade path/plan for the future in order to get an exception.
Thanks
SSL/TLS version in use
-
dwhitfield
- Former Nagios Staff
- Posts: 4583
- Joined: Wed Sep 21, 2016 10:29 am
- Location: NoLo, Minneapolis, MN
- Contact:
Re: SSL/TLS version in use
As far as transport, yes. You'll also want to make sure you have proper storage security in place.gormank wrote:Hi,
I need info on whether TLS is supported, what version and if not supported what version of SSL is in use/available. The below list is what I can think of, anything else?
yes, 128-bit TLS 1.2, assuming you have the webserver set up properly.gormank wrote:Log server web pages
Using the inputs provided by Logstash you can accomplish this. The default syslog input we give uses the tcp input which allows SSL connections using the ssl_* options. If you forced all your log sources to send over SSL then yes, you could make sure that all logs were being sent via encrypted methods.gormank wrote:rsyslog and log server communication