Community
Participate
Working Groups
Build Identifier: 7.3.1 The SslContextFactory#createSSLContext method attempts to validate the server's end-entity certificate. In general servers don't do this because the resulting answer is meaningless. It's up to the client to decide whether they trust the server's certificate. In addition, if the server uses a self-signed certificate this check is going to fail. I recommend removing it all together. Reproducible: Always
Validation of the server's SSL certificate is mandated in high security environments that require validating the certificate before connector is started to ensure that it's certification path contains only trusted intermediate Certificate Authorities, that it is already valid, has not expired, and hasn't been revoked. We will address the issue that the server's SSL certificate validation is coupled with client certificate validation in bug 345656.
It's fine to keep it, but just to be clear, that check in no way effects security. It is entirely meaningless except, perhaps, for debug purposes.
Chad, it does affect security a little bit... if only in a human factors way. If you are able to start a server with known invalid certificates, then users are often dumb enough to just accept the warnings and add a security exception to their browsers. cheers
