How to correctly update kubernetes api-server.yaml manifest file for hardening and sweet32
These ciphers should fix all sweet32 issues.
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
Same can be used for kube-apiserver, kube-controller-manager, kube-scheduler, kubelet and etcd as well to mitigate issues for all components.
Edit the respective yaml and pass these for the following argument
--tls-cipher-suites=$ABOVE_TLS_CIPHER_SUITES