Do any Replicated components use SHA1 cipher suites?

West_Blair · June 15, 2023, 10:03am

Xav_Paice · June 27, 2023, 11:32pm

Hi,

I will forward this to our security folks and see if they have an answer for the products in general - but is there a specific thing you’re looking at?

tcalotta · June 28, 2023, 8:12pm

SHA1 is used for hashing and file integrity checks. For transparency, there is a deprecated function which uses SHA1 to protect local (i.e. only on your server) secrets relating to rook object stores. However, that function is never called so SHA1 is not used to protect any secrets.

Topic		Replies	Views
How can I use Sealed Secrets in my Replicated Kubernetes Application? Packaging an application	1	1390	February 7, 2019
Are the values generated by RandomString cryptographically random? Can you share any details on how you generate those random strings? Packaging an application kots , config	0	464	November 10, 2021
Using Replicated Console Certs in Kubernetes Workloads Packaging an application	4	1251	November 21, 2022
Run Copy Collector Against Wildcard Namespaces How do I? support	1	180	May 24, 2023
Combining Conditionals in Replicated Config	2	358	July 10, 2022

Do any Replicated components use SHA1 cipher suites?

Related Topics