Justin Ross updated PROTON-73:
    Labels: security ssl  (was: ssl)

> Server should force renegotiate when client authentication setting is changed 
> on an active connection.
> ------------------------------------------------------------------------------------------------------
>                 Key: PROTON-73
>                 URL: https://issues.apache.org/jira/browse/PROTON-73
>             Project: Qpid Proton
>          Issue Type: Bug
>          Components: proton-c
>            Reporter: Ken Giusti
>            Assignee: Ken Giusti
>            Priority: Minor
>              Labels: security, ssl
> If the server application changes the peer authentication setting from 
> 'anonymous' to 'verify-peer' while an SSL session is active, then the server 
> should force the client to re-negotiate (SSL handshake) to verify the 
> remote's identity.

This message was sent by Atlassian JIRA

Reply via email to