You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@qpid.apache.org by "Ted Ross (JIRA)" <qp...@incubator.apache.org> on 2009/08/18 20:04:14 UTC

[jira] Created: (QPID-2057) qpidd --require-encryption forces SASL security layer to be used even if SSL is in use

qpidd --require-encryption forces SASL security layer to be used even if SSL is in use
--------------------------------------------------------------------------------------

                 Key: QPID-2057
                 URL: https://issues.apache.org/jira/browse/QPID-2057
             Project: Qpid
          Issue Type: Bug
          Components: C++ Broker
    Affects Versions: 0.5
            Reporter: Ted Ross
            Priority: Minor


If running SSL and using GSSAPI authentication with the --require-encryption option turned on, the SASL layer will force minSsf to be greater than zero, thus causing the SASL security layer to encrypt.

This is unnecessary double-encryption since SSL is already providing a cipher channel at a lower layer.


-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


---------------------------------------------------------------------
Apache Qpid - AMQP Messaging Implementation
Project:      http://qpid.apache.org
Use/Interact: mailto:dev-subscribe@qpid.apache.org