[
https://issues.apache.org/jira/browse/QPID-1511?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12657441#action_12657441
]
gemmellr edited comment on QPID-1511 at 12/17/08 8:47 AM:
----------------------------------------------------------------
The above noted patch is now out of date due to other changes to the
JMXServerRegistry class of the MC for auto-negotiation (QPID-1506). Same
changes, different place. It is also out of date due to a seperate change
introducing use of the custom invoker on the RMI connector server in the
broker.
I am looking into adding SSL now, so will add a new patch then.
was (Author: gemmellr):
The above noted patch is now out of date due to other changes to the
JMXServerRegistry class of the MC for auto-negotiation (QPID-1506). Same
changes, different place. I am looking into adding SSL now, so will add a new
patch then.
> JMX Interface does not require authentication
> ---------------------------------------------
>
> Key: QPID-1511
> URL: https://issues.apache.org/jira/browse/QPID-1511
> Project: Qpid
> Issue Type: Improvement
> Components: Java Broker, Java Management : JMX Console
> Affects Versions: M1, M2, M2.1, M3, M4
> Reporter: Martin Ritchie
> Attachments: QPID-1511_wip_8dec2008.patch
>
>
> Summary:
> JMX Interface uses the default RMI connector which has no authentication
> mechanism. We should not be shipping a JMX interface that doesn't have
> authentication. The interface has been disabled by default for M4 but this
> should be modified based on the outcome of the discussion on qpid-dev to
> authenticate all connections.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
