[Bro-Dev] [JIRA] (BIT-1352) Certificate validation script does not deal well with root-certs being sent by server
Robin Sommer (JIRA)
jira at bro-tracker.atlassian.net
Fri Apr 3 11:33:00 PDT 2015
[ https://bro-tracker.atlassian.net/browse/BIT-1352?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Robin Sommer updated BIT-1352:
------------------------------
Fix Version/s: (was: 2.4)
2.5
> Certificate validation script does not deal well with root-certs being sent by server
> -------------------------------------------------------------------------------------
>
> Key: BIT-1352
> URL: https://bro-tracker.atlassian.net/browse/BIT-1352
> Project: Bro Issue Tracker
> Issue Type: Problem
> Components: Bro
> Affects Versions: git/master
> Reporter: Johanna Amann
> Assignee: Johanna Amann
> Fix For: 2.5
>
>
> Currently, the validate-certs script in policy does not deal well with certain certificate chains, where the trust-anchor is being sent by the server. We should be able to fix this by removing the trust-anchor automatically from the chain; solving this might potentially change the way root-certs are currently being loaded into Bro.
> Example server: access.redhat.com
--
This message was sent by Atlassian JIRA
(v6.4-OD-16-006#64014)
More information about the bro-dev
mailing list