Copy link to issue

Upgrade to RabbitMQ 3.6.0 or later (for strong password hash support)

Description

3.5.9 supports only MD5, which is unacceptable and not FIPS compliant.

Need to check full sanity tests

Activity

Show:

Isaac Shabtay

July 15, 2018, 4:03 PM

Copy link to comment

can we also ensure that RabbitMQ stores passwords in strong hash?
You can assign it to me if you're interested.

Ido Berkovitch

July 15, 2018, 5:37 PM

Copy link to comment

tal already verified that, in installation we install a clean rabbit and in snapshot restore we create new users, so rabbit uses the new default stronger hash.

Done

Assignee

Tal Yakobovitch

Reporter

Isaac Shabtay

Labels

rabbitmq

Target Version

4.5

QA Owner

Uri Wygodny

Premium Only

Documentation Required

None

Why Blocked?

None

Release Notes

None

Priority

None

Epic Link

4.5 dependency upgrades

Sprint

None

Priority

Unprioritized

Configure

Cloudify Board

Upgrade to RabbitMQ 3.6.0 or later (for strong password hash support)

Description

Activity

Assignee

Reporter

Labels

Target Version

QA Owner

Premium Only

Documentation Required

Why Blocked?

Release Notes

Priority

Epic Link

Sprint

Priority