directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Pierre-Arnaud Marcelot (Commented) (JIRA)" <>
Subject [jira] [Commented] (DIRAPI-69) startTLS hostname verification
Date Tue, 24 Jan 2012 07:35:43 GMT


Pierre-Arnaud Marcelot commented on DIRAPI-69:

Hi Daniel,

Have you tried implementing a and assigning it to the

I know it's working when accessing the servers using LDAPS but I'm not sure it's used during
the StartTLS operation though.

FYI, we provide a default implementation
which trusts the given certificates without verifying them (and logs as debug the received
> startTLS hostname verification
> ------------------------------
>                 Key: DIRAPI-69
>                 URL:
>             Project: Directory Client API
>          Issue Type: Improvement
>            Reporter: Daniel Fisher
> The current API does not have any features for controlling hostname verification. In
addition, it appears that *no* hostname verification occurs by default. See RFC 2830 section

This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:!default.jspa
For more information on JIRA, see:


View raw message