[jira] [Updated] (PROTON-73) Server should force renegotiate when client authentication setting is changed on an active connection.

Justin Ross (JIRA) Sun, 10 Jan 2016 14:49:07 -0800

     [ 
https://issues.apache.org/jira/browse/PROTON-73?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Justin Ross updated PROTON-73:
------------------------------
    Labels: security ssl  (was: ssl)

> Server should force renegotiate when client authentication setting is changed 
> on an active connection.
> ------------------------------------------------------------------------------------------------------
>
>                 Key: PROTON-73
>                 URL: https://issues.apache.org/jira/browse/PROTON-73
>             Project: Qpid Proton
>          Issue Type: Bug
>          Components: proton-c
>            Reporter: Ken Giusti
>            Assignee: Ken Giusti
>            Priority: Minor
>              Labels: security, ssl
>
> If the server application changes the peer authentication setting from 
> 'anonymous' to 'verify-peer' while an SSL session is active, then the server 
> should force the client to re-negotiate (SSL handshake) to verify the 
> remote's identity.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Updated] (PROTON-73) Server should force renegotiate when client authentication setting is changed on an active connection.

Reply via email to