You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@nifi.apache.org by "Bryan Rosander (JIRA)" <ji...@apache.org> on 2016/12/28 20:33:58 UTC
[jira] [Updated] (NIFI-3265) tls-toolkit client fails when
tls-toolkit server has multiple cn attributes
[ https://issues.apache.org/jira/browse/NIFI-3265?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Bryan Rosander updated NIFI-3265:
---------------------------------
Description:
Ldap hierarchies can have multiple cn attributes.
tls-toolkit in client mode validates the first CN attribute parsed from the distinguished name against the hostname name of the tls-toolkit server to help avoid man-in-the-middle attacks.
This check fails when multiple CN attributes are present.
was:Ldap hierarchies can have multiple cn attributes. tls-toolkit in client mode validates the first CN attribute parsed from the distinguished name against the hostname name of the tls-toolkit server to help avoid man-in-the-middle attacks. This check fails when multiple CN attributes are present.
> tls-toolkit client fails when tls-toolkit server has multiple cn attributes
> ---------------------------------------------------------------------------
>
> Key: NIFI-3265
> URL: https://issues.apache.org/jira/browse/NIFI-3265
> Project: Apache NiFi
> Issue Type: Bug
> Affects Versions: 1.1.1, 1.0.1
> Reporter: Bryan Rosander
> Priority: Minor
> Labels: tls-toolkit
>
> Ldap hierarchies can have multiple cn attributes.
> tls-toolkit in client mode validates the first CN attribute parsed from the distinguished name against the hostname name of the tls-toolkit server to help avoid man-in-the-middle attacks.
> This check fails when multiple CN attributes are present.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)