rhtyd opened a new pull request #2278: CLOUDSTACK-9993: With auth strictness stop SSL handshake for rogue clients URL: https://github.com/apache/cloudstack/pull/2278 When auth strictness is set to true, terminate SSH handshake for clients that do not present valid or any certificates. This uses the `setNeedClientAuth`, where if the option is set and the client chooses not to provide authentication information about itself, the negotiations will stop and the engine will begin its closure procedure: https://docs.oracle.com/javase/7/docs/api/javax/net/ssl/SSLEngine.html#setNeedClientAuth(boolean) Signed-off-by: Rohit Yadav <[email protected]> Pinging for review - @DaanHoogland @nvazquez @borisstoyanov @wido @mlsorensen and others ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected]
With regards, Apache Git Services
