You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@cloudstack.apache.org by gi...@git.apache.org on 2017/09/29 06:59:21 UTC

[GitHub] rhtyd opened a new pull request #2278: CLOUDSTACK-9993: With auth strictness stop SSL handshake for rogue clients

rhtyd opened a new pull request #2278: CLOUDSTACK-9993: With auth strictness stop SSL handshake for rogue clients
URL: https://github.com/apache/cloudstack/pull/2278
 
 
   When auth strictness is set to true, terminate SSH handshake for clients
   that do not present valid or any certificates.
   
   This uses the `setNeedClientAuth`, where if the option is set and the
   client chooses not to provide authentication information about itself,
   the negotiations will stop and the engine will begin its closure
   procedure:
   https://docs.oracle.com/javase/7/docs/api/javax/net/ssl/SSLEngine.html#setNeedClientAuth(boolean)
   
   Signed-off-by: Rohit Yadav <ro...@shapeblue.com>
   
   Pinging for review - @DaanHoogland @nvazquez @borisstoyanov @wido @mlsorensen and others
 
----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
users@infra.apache.org


With regards,
Apache Git Services