Could you be more specific? What does one specify exactly to assure SSLv2 is not used for both client-server and server-server communications? Example yaml statements would be wonderful.
Your patience with the security neophyte is greatly appreciated. Lou. On Fri, Apr 20, 2018 at 9:35 AM, Michael Shuler <mich...@pbandjelly.org> wrote: > On 04/20/2018 07:41 AM, Lou DeGenaro wrote: > > Running Cassandra produces the following error message: > > > > "SSLv2Hello is not a recognized protocol" > > > > because the JVM being used does not support SSLv2. The JVM does not > > support SSLv2 because "it's a HUGE security risk." > > > > How does one configure Cassandra to *not* use SSLv2? > > See the `server_encryption_options:` and `client_encryption_options:` > sections in conf/cassandra.yaml for the `protocol:` and `cipher_suites:` > configurations. (Defaults are in comments.) > > -- > Michael > > --------------------------------------------------------------------- > To unsubscribe, e-mail: user-unsubscr...@cassandra.apache.org > For additional commands, e-mail: user-h...@cassandra.apache.org > >
