[AXIS2C-1700] Enable SSL/TLS peer name validation by default - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Open
Priority: Minor
Resolution: Unresolved
Affects Version/s: None
Fix Version/s: None
Component/s: transport/http
Labels:
None

Description

SSL/TLS peer name validation has been added but is disabled by default for backwards compatibility.

This should be enabled by default in a future release.

Attachments

Issue Links

is a clone of

AXIS2C-1619 CVE-2012-6107: SSL/TLS Hostname validation

Resolved

Activity

People

Assignee:: Unassigned

Reporter:: Bill Blough

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 01/Sep/19 00:34

Updated:: 01/Sep/19 00:35