Public bug reported:
Proxytunnel 1.9.0+svn250-6 as well as 1.9.0+svn250-6build1, doesn't
check valid of ssl certificate if parameter -e (SSL encrypt data between
local proxy and destination) is used. It means that somebody could start
MITM attack. It is already solved in upstream as you can see here -
https://github.com/proxytunnel/proxytunnel/commit/5a7692f28f536108acea5b5efc129e14c9c383ca.
** Affects: proxytunnel (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1814774
Title:
Proxytunnel doesn't check if certificate is valid
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/proxytunnel/+bug/1814774/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
