freeipa

Clone
Source Code
GIT

55f1ffa Enable 389-ds SSL host checking by defauilt

Authored and Committed by rcritten 13 years ago
raw patch tree parent
4 files changed. 58 lines added. 8 lines removed.
install/updates/10-config.update
file added
+5
install/updates/Makefile.am
file modified
+1 -0
ipaserver/install/dsinstance.py
file modified
+1 -2
ipaserver/ipaldap.py
file modified
+51 -6 
    Enable 389-ds SSL host checking by defauilt
    
    Enforce that the remote hostname matches the remote SSL server certificate
    when 389-ds operates as an SSL client.
    
    Also add an update file to turn this off for existing installations.
    
    This also changes the way the ldapupdater modlist is generated to be more
    like the framework. Single-value attributes are done as replacements
    and there is a list of force-replacement attributes.
    
    ticket 1069
file added
+5
file modified
+1 -0
file modified
+1 -2
file modified
+51 -6
Powered by Pagure 5.14.1
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.