✅ I checked the Altinity Stable Builds lifecycle table, and the Altinity Stable Build version I'm using is still supported.
Type of problem
Incomplete implementation - something's not quite right
Describe the situation
altinity/clickhouse-server:25.3.8.30001.altinityfips ships with https://github.com/Altinity/ClickHouse/blob/releases/25.3.8-fips/programs/server/config.xml which contains http_port, interserver_http_port, mysql, and postgresql ports which are non-TCP and thus in violation of FIPS secure connection requirements.
How to reproduce the behavior
Ports 8123, 9009, 9004, and 9005 are accessible by default on the FIPS 140-3 build.
Expected behavior
Ports 9004 and 9005 should not be open by default, as they are plaintext and thus not secure TCP.
PR to fix: #1840
✅ I checked the Altinity Stable Builds lifecycle table, and the Altinity Stable Build version I'm using is still supported.
Type of problem
Incomplete implementation - something's not quite right
Describe the situation
altinity/clickhouse-server:25.3.8.30001.altinityfipsships with https://github.com/Altinity/ClickHouse/blob/releases/25.3.8-fips/programs/server/config.xml which contains http_port, interserver_http_port, mysql, and postgresql ports which are non-TCP and thus in violation of FIPS secure connection requirements.How to reproduce the behavior
Ports 8123, 9009, 9004, and 9005 are accessible by default on the FIPS 140-3 build.
Expected behavior
Ports 9004 and 9005 should not be open by default, as they are plaintext and thus not secure TCP.
PR to fix: #1840