You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@ranger.apache.org by "Dhaval Shah (Jira)" <ji...@apache.org> on 2021/12/09 13:26:00 UTC
[jira] [Commented] (RANGER-3521) Ranger KMS IS NOT ENFORCING HSTS ON SSL PORT DEFINED BY RFC 6797
[ https://issues.apache.org/jira/browse/RANGER-3521?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17456440#comment-17456440 ]
Dhaval Shah commented on RANGER-3521:
-------------------------------------
Commited in Apache Master branch : https://github.com/apache/ranger/commit/a3d798253605b5cb51cbce03489a9e36c3b338b8
> Ranger KMS IS NOT ENFORCING HSTS ON SSL PORT DEFINED BY RFC 6797
> ----------------------------------------------------------------
>
> Key: RANGER-3521
> URL: https://issues.apache.org/jira/browse/RANGER-3521
> Project: Ranger
> Issue Type: Improvement
> Components: Ranger
> Reporter: Dhaval Shah
> Assignee: Dhaval Shah
> Priority: Major
>
> We found the vulnerability related to ranger KMS on SSL port.
> Ranger KMS is not enforcing HSTS on SSL port defined by RFC 6797.
--
This message was sent by Atlassian Jira
(v8.20.1#820001)