Details
-
Bug
-
Status: Closed
-
Major
-
Resolution: Fixed
-
None
-
None
Description
Currently, the Python client for AMQP 0-8...0-9-1 does not perform hostname verification of tls connections. this opens the possibility of Man-in-the-Middle attacks.
We should enhance the client to have this ability, make it configurable and turn the feature on by default.
It should respect hostnames from both CN and SANs, and support wildcards.
Attachments
Attachments
Issue Links
- is related to
-
QPID-7254 [Python Client] Perform SSL hostname verification
- Closed