Maybe we should clarify that enabling endpoint verification guards against man-in-the-middle attacks if someone configures their system to trust a CA rather than directly trusting their servers?
Also, maybe we should mention that this verification may become mandatory in a future release? [ Full content available at: https://github.com/apache/geode/pull/2406 ] This message was relayed via gitbox.apache.org for [email protected]
