Details
-
New Feature
-
Status: Closed (View Workflow)
-
Major
-
Resolution: Fixed
-
None
-
None
Description
Goal is to disable use of unsecured authentication plugin without explicit option setting.
this is to avoid man in the middle fake server/ compromised server to retrieve password in clear
Attachments
Issue Links
- relates to
-
CONC-544 No downgrade protection for ed25519 client authentication
- Closed