[teiid-issues] [JBoss JIRA] Closed: (TEIID-1260) All admin traffic should be encrypted by default

Steven Hawkins (JIRA) jira-events at lists.jboss.org
Fri Nov 5 12:46:05 EDT 2010


     [ https://jira.jboss.org/browse/TEIID-1260?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Steven Hawkins closed TEIID-1260.
---------------------------------



> All admin traffic should be encrypted by default
> ------------------------------------------------
>
>                 Key: TEIID-1260
>                 URL: https://jira.jboss.org/browse/TEIID-1260
>             Project: Teiid
>          Issue Type: Quality Risk
>          Components: Server
>    Affects Versions: 7.1
>            Reporter: Steven Hawkins
>            Assignee: Steven Hawkins
>            Priority: Critical
>             Fix For: 7.1.1
>
>
> The admin api via the admin port can be used to transmit resources that contain passwords or other sensitive information.  Rather than just encrypting the logon messages, all traffic should be secured.  
> It does not make sense to just extend our logon encryption scheme, since it would be effectively the same as anonymous SSL.

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

        


More information about the teiid-issues mailing list