Cliff Jansen created QPID-5356:
----------------------------------
Summary: Windows can provide an unspecified client certificate in
SSL negotiation
Key: QPID-5356
URL: https://issues.apache.org/jira/browse/QPID-5356
Project: Qpid
Issue Type: Bug
Components: C++ Client
Affects Versions: 0.24
Environment: Windows, SSL
Reporter: Cliff Jansen
Assignee: Cliff Jansen
Fix For: 0.27
By default, the SChannel package from Microsoft will attempt to guess an
appropriate client certificate during SSL/TLS negotiation if a client
certificate is requested by the server and none is supplied by the client in
its credentials structure. This behavior can be changed to only work with an
explicitly specified certificate (if any) by the client.
By doing so, the behavior of clients is made more consistent across platforms
and this eliminates unexpected false positives in testing.
--
This message was sent by Atlassian JIRA
(v6.1#6144)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
