1318167 – SSL - server accepts any client certificate

Bug 1318167 - SSL - server accepts any client certificate

Summary: SSL - server accepts any client certificate

Keywords:
Status:	CLOSED DUPLICATE of bug 1318154
Alias:	None
Product:	JBoss Data Virtualization 6
Classification:	JBoss
Component:	Teiid
Sub Component:
Version:	6.3.0
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	unspecified
Target Milestone:	---
Target Release:	---
Assignee:	Van Halbert
QA Contact:	Juraj Duráni
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2016-03-16 08:25 UTC by Juraj Duráni
Modified:	2016-06-03 21:03 UTC (History)
CC List:	6 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:	2016-03-18 19:32:01 UTC
Type:	Bug
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Issue Tracker	TEIID-4081	0	Blocker	Closed	SSL - server accepts any client certificate	2017-07-27 09:11:12 UTC

Description Juraj Duráni 2016-03-16 08:25:21 UTC

Description of problem:
In 2-way authentication mode client must provide to the server valid certificate. But Teiid accepts any certificate which client provides.
* expired
* untrusted
* signed by certificate of root CA which already expired

Teiid should reject such client's certificate and fail to establish connection.

Comment 1 Van Halbert 2016-03-18 19:32:01 UTC


*** This bug has been marked as a duplicate of bug 1318154 ***

Comment 2 JBoss JIRA Server 2016-06-03 21:03:39 UTC

Steven Hawkins <shawkins> updated the status of jira TEIID-4081 to Closed

Note You need to log in before you can comment on or make changes to this bug.