TLS Terminated Etcd (If you use etcd this affects you)
Antonio Rosales
antonio.rosales at canonical.com
Thu Jun 16 15:58:57 UTC 2016
On Thu, Jun 16, 2016 at 9:10 AM, Charles Butler
<charles.butler at canonical.com> wrote:
> Thanks again for the feedback,
>
> I'm going to cut and push this release of the Etcd charm and issue a follow
> up announcement to the list advising pinning/avoiding upgrade if end users
> wish to keep non-tls connections.
I am sure you were already planning to, but also suggest to also
announce and communicate development on the upstream etcd mailing list
in addition to here.
-thanks,
Antonio
>
> Cheers!
>
> On Thu, Jun 16, 2016 at 2:34 AM Jay Wren <jay.wren at canonical.com> wrote:
>>
>> On Wed, Jun 15, 2016 at 12:08 PM, Casey Marshall
>> <casey.marshall at canonical.com> wrote:
>>>
>>> The overhead of a TLS handshake can be minimal, it just depends on the
>>> algorithm & key lengths used. This should be configurable in the layer, I
>>> think. EC and 2048-bit RSA have reasonable handshake times.
>>>
>>
>> I take it all back. I just had a chat with coworkers who reminded me that
>> etcd supports http2 already and that the performance improvements of http2
>> could be very significant. Given that, I thank you greatly for these TLS
>> changes and look forward to using them
>> --
>> Jay
>
> --
> Juju Charmer
> Canonical Group Ltd.
> Ubuntu - Linux for human beings | www.ubuntu.com
> Juju - The fastest way to model your service | www.jujucharms.com
>
> --
> Juju mailing list
> Juju at lists.ubuntu.com
> Modify settings or unsubscribe at:
> https://lists.ubuntu.com/mailman/listinfo/juju
>
More information about the Juju
mailing list