[jira] [Commented] (RANGER-3521) Ranger KMS IS NOT ENFORCING HSTS ON SSL PORT DEFINED BY RFC 6797

Dhaval Shah (Jira) Thu, 09 Dec 2021 05:26:07 -0800


    [ 
https://issues.apache.org/jira/browse/RANGER-3521?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17456440#comment-17456440
 ]


Dhaval Shah commented on RANGER-3521:
-------------------------------------

Commited in Apache Master branch : 
https://github.com/apache/ranger/commit/a3d798253605b5cb51cbce03489a9e36c3b338b8

> Ranger KMS IS NOT ENFORCING HSTS ON SSL PORT DEFINED BY RFC 6797
> ----------------------------------------------------------------
>
>                 Key: RANGER-3521
>                 URL: https://issues.apache.org/jira/browse/RANGER-3521
>             Project: Ranger
>          Issue Type: Improvement
>          Components: Ranger
>            Reporter: Dhaval Shah
>            Assignee: Dhaval Shah
>            Priority: Major
>
> We found the vulnerability related to ranger KMS on SSL port.
> Ranger KMS is not enforcing HSTS on SSL port defined by RFC 6797.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Commented] (RANGER-3521) Ranger KMS IS NOT ENFORCING HSTS ON SSL PORT DEFINED BY RFC 6797

Reply via email to