directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Kiran Ayyagari (JIRA)" <j...@apache.org>
Subject [jira] [Created] (DIRSERVER-1617) Add a feture to support TLS in DelegatingAuthenticator
Date Mon, 16 May 2011 20:22:47 GMT
Add a feture to support TLS in DelegatingAuthenticator
------------------------------------------------------

                 Key: DIRSERVER-1617
                 URL: https://issues.apache.org/jira/browse/DIRSERVER-1617
             Project: Directory ApacheDS
          Issue Type: Improvement
            Reporter: Kiran Ayyagari
            Priority: Minor


Current implementation of DelegatingAuthenticator uses plain socket connection which makes
it vulnerable to MITM attacks.
It will be good to setup TLS (using startTLS extended operation) after establishing a connection.


We should also add a configuration option to selectively turn on/off this option with a new
attributetype named like 'useTLS' 
in the 'ads-delegatingAuthenticator' objectclass.

--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira

Mime
View raw message