[jira] [Commented] (KNOX-2772) add configuration for jetty renegotiation

Sandor Molnar (Jira) Thu, 07 Jul 2022 01:21:16 -0700


    [ 
https://issues.apache.org/jira/browse/KNOX-2772?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17563633#comment-17563633
 ]


Sandor Molnar commented on KNOX-2772:
-------------------------------------

For future readers of this JIRA: the above-referenced 
[CVE-2011-1473|https://www.cve.org/CVERecord?id=CVE-2011-1473] might make it 
easier for remote attackers to cause a denial of service (CPU consumption) by 
performing many renegotiations within a single connection.

> add configuration for jetty renegotiation
> -----------------------------------------
>
>                 Key: KNOX-2772
>                 URL: https://issues.apache.org/jira/browse/KNOX-2772
>             Project: Apache Knox
>          Issue Type: Improvement
>          Components: Server
>    Affects Versions: 1.6.0
>            Reporter: nanhuirong
>            Priority: Critical
>         Attachments: KNOX-2772.patch
>
>
> the user or developer can't config the renegotiation for knox
> *Action plan:*
> set the value when building the SslContextFactory



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Commented] (KNOX-2772) add configuration for jetty renegotiation

Reply via email to