[ https://bro-tracker.atlassian.net/browse/BIT-1332?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Robin Sommer reassigned BIT-1332: --------------------------------- Assignee: Robin Sommer > Please merge topic/johanna/cert-validation > ------------------------------------------ > > Key: BIT-1332 > URL: https://bro-tracker.atlassian.net/browse/BIT-1332 > Project: Bro Issue Tracker > Issue Type: Improvement > Components: Bro > Affects Versions: git/master > Reporter: Johanna Amann > Assignee: Robin Sommer > Fix For: 2.4 > > > Please merge topic/johanna/cert-validation. This is an update to the script > used to validate certificates in SSL/TLS connections. Description from main > commit: > {quote} > Update certificate validation script - new version will cache valid > intermediate chains that it encounters on the wire and use those to try > to validate chains that might be missing intermediate certificates. > This vastly improves the number of certificates that Bro can validate. > The only drawback is that now validation behavior is not entirely > predictable anymore - the certificate of a server can fail to validate > when Bro just started up (due to the intermediate missing), and succeed > later, when the intermediate can be found in the cache. > Has been tested on big-ish clusters and should not introduce any > performance problems. > {quote} -- This message was sent by Atlassian JIRA (v6.4-OD-15-055#64014) _______________________________________________ bro-dev mailing list bro-dev@bro.org http://mailman.icsi.berkeley.edu/mailman/listinfo/bro-dev