Uploaded image for project: 'Bitrepository'
  1. Bitrepository
  2. BITMAG-1053

Certificates are not validated for expiration

    XMLWordPrintable

Details

    • Bug
    • Resolution: Fixed
    • Major
    • 1.8
    • 1.0, 1.1, 1.2, 1.3, 1.4, 1.5, 1.6, 1.7
    • None
    • None

    Description

      When certificates are loaded from RepositorySettings, and when a message's signature is validated against known certificates, no certificate's validity is checked (i.e. it is not checked if the certificate has expired).
      This should not pose a serious security problem, as the allowed certificates is a controlled list, but it is still something that should be mended.

      Attachments

        Activity

          People

            Unassigned Unassigned
            ktc Kim Christensen (Inactive)
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Time Tracking

                Estimated:
                Original Estimate - Not Specified
                Not Specified
                Remaining:
                Remaining Estimate - Not Specified
                Not Specified
                Logged:
                Time Spent - 28m
                28m