[
https://issues.apache.org/jira/browse/KAFKA-2656?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14964030#comment-14964030
]
ASF GitHub Bot commented on KAFKA-2656:
---------------------------------------
Github user asfgit closed the pull request at:
https://github.com/apache/kafka/pull/312
> Default SSL keystore and truststore config are unusable
> -------------------------------------------------------
>
> Key: KAFKA-2656
> URL: https://issues.apache.org/jira/browse/KAFKA-2656
> Project: Kafka
> Issue Type: Bug
> Reporter: Rajini Sivaram
> Assignee: Rajini Sivaram
> Priority: Critical
> Fix For: 0.9.0.0
>
>
> Default truststore for clients and default key and truststore for Kafka
> server are set to files in /tmp along with simplistic passwords. Since no
> sample stores are packaged with Kafka anyway, there is no value in hardcoded
> paths and passwords as defaults.
> Moreover these defaults prevent the use of standard javax.net.ssl properties.
> And they force truststores to be set in Kafka configuration even when
> certificates are signed by a trusted authority included in the Java cacerts.
> Default keystores and truststores should be replaced with JVM defaults.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
