[MDEV-31857] enable --ssl-verify-server-cert by default - Jira

XML

Word

Printable

Details

Type: New Feature
Status: Closed (View Workflow)
Priority: Critical
Resolution: Fixed
Fix Version/s: 11.4.1
Component/s: SSL
Labels:
- Preview_11.3

Description

The summary says it all, let's get a secure-by-default connection by enabling --ssl-verify-server-cert by default.

Attachments

Issue Links

blocks

MDEV-28634 Client's --ssl-* options (without --ssl-verify-server-cert) are silently ignored if TLS is not possible

Closed

causes

MDEV-32473 MariaBackup requires disable-ssl-verify-server-cert

Closed

MDEV-33430 Command line client error ERROR 2026 (HY000): TLS/SSL error: Server certificate validation failed. A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider. Error 0x800B0109(CERT_E_UNTRUSTEDROOT)

Closed

ODBC-421 Certificate verification option should be on by default

Closed

is blocked by

MDEV-31856 use ephemeral ssl certificates

Closed

relates to

MDEV-33396 main.user_limits fails sporadically with CERT_E_UNTRUSTED_ROOT

Closed

(1 relates to)

Activity

People

Assignee:: Sergei Golubchik

Reporter:: Sergei Golubchik

Votes:: 0 Vote for this issue

Watchers:: 9 Start watching this issue

Dates

Created:: 2023-08-05 16:48

Updated:: 2 days ago 19:29

Resolved:: 2024-02-05 10:16

Git Integration

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.