Rajini Sivaram created KAFKA-2656:
-------------------------------------

             Summary: Default SSL keystore and truststore config are unusable
                 Key: KAFKA-2656
                 URL: https://issues.apache.org/jira/browse/KAFKA-2656
             Project: Kafka
          Issue Type: Bug
            Reporter: Rajini Sivaram
            Assignee: Rajini Sivaram
            Priority: Critical
             Fix For: 0.9.0.0


Default truststore for clients and default key and truststore for Kafka server 
are set to files in /tmp along with simplistic passwords. Since no sample 
stores are packaged with Kafka anyway, there is no value in hardcoded paths and 
passwords as defaults. 

Moreover these defaults prevent the use of standard javax.net.ssl properties. 
And they force truststores to be set in Kafka configuration even when 
certificates are signed by a trusted authority included in the Java cacerts.

Default keystores and truststores should be replaced with JVM defaults.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Reply via email to