Set MinVersion for TLS (#5013)

Limits TLS <= v1.1 due to security reason.

Set MinVersion for TLS (#5013)
Limits TLS <= v1.1 due to security reason.
4d047bbc · Shu Muto · GitHub · 78624722 · 4d047bbc
隐藏空白更改
内联并排

Showing with 6 addition and 3 deletion

src/app/backend/dashboard.go src/app/backend/dashboard.go +6 -3

未找到文件。
--- a/src/app/backend/dashboard.go
+++ b/src/app/backend/dashboard.go
@@ -181,9 +181,12 @@ func main() {
 		log.Printf("Serving securely on HTTPS port: %d", args.Holder.GetPort())
 		secureAddr := fmt.Sprintf("%s:%d", args.Holder.GetBindAddress(), args.Holder.GetPort())
 		server := &http.Server{
-			Addr:      secureAddr,
-			Handler:   http.DefaultServeMux,
-			TLSConfig: &tls.Config{Certificates: servingCerts},
+			Addr:    secureAddr,
+			Handler: http.DefaultServeMux,
+			TLSConfig: &tls.Config{
+				Certificates: servingCerts,
+				MinVersion:   tls.VersionTLS12,
+			},
 		}
 		go func() { log.Fatal(server.ListenAndServeTLS("", "")) }()
 	} else {