Globally configure min_tls_version
and cipher_suites
for all connections
#5534
Labels
t:feature
New feature or enhancement request
Please describe your use case / problem.
For security considerations we would like to define
min_tls_version
andcipher_suites
for all connections made via Emissary Ingress.Describe the solution you'd like
We would like to enforce
min_tls_version
andcipher_suites
for all connections via Helm Chart or via the Module CRD.Describe alternatives you've considered
We considered writing a Kyverno policy to mutate all Mappings/Hosts/TLSContext but this is not really feasible.
Additional context
Slack conversation about the topic https://datawire-oss.slack.com/archives/CAULN7S76/p1701079091551359.
The text was updated successfully, but these errors were encountered: