Ir para o conteúdo
Ao usar o AWS re:Post, você concorda com os AWS re:Post Termos de uso
AWS re:Postre:Post
sobre o re:Post

s3 tls update still, getting email from aws that s3 tls is 1 instaed of 1.2

0

I have updated the policy for s3 bucket and we made the necessary changes from the coding side as well. I have checked the OpenSSL version in my server as well it's 1.2. Still, aws are saying that the bucket has tls version is 1. Can anyone guide me now on what is wrong here? Thank you!! Used this doc as well: https://repost.aws/knowledge-center/s3-enforce-modern-tls

Tópicos
Armazenamento
Tags
Armazenamento
Idioma
English
feita há 3 anos519 visualizações
1 Resposta
0

This article provides information on the changes and how to find what is still making TLS 1.0 and 1.1 calls.

https://aws.amazon.com/blogs/security/tls-1-2-required-for-aws-endpoints/

AWS CloudTrail records are especially useful to identify if you are using the outdated TLS versions. You can now search for the TLS version used for your connections by using the recently added tlsDetails field. The tlsDetails structure in each CloudTrail record contains the TLS version, cipher suite, and the client-provided host name used in the service API call, which is typically the fully qualified domain name (FQDN) of the service endpoint. You can then use the data in the records to help you pinpoint your client software that is responsible for the TLS 1.0 or 1.1 call, and update it accordingly. Over half of AWS services currently provide the TLS information in the CloudTrail tlsDetails field, and we are continuing to roll this out for the remaining services in the coming months.

AWS
ESPECIALISTA
respondido há 3 anos

Você não está conectado. Fazer login para postar uma resposta.

Uma boa resposta responde claramente à pergunta, dá feedback construtivo e incentiva o crescimento profissional de quem perguntou.

Conteúdo relevante