Hello Pankaj, On Tue, Aug 14, 2018 at 12:32:16 +0800, pankaj singh wrote: > Thanks for highlighting the concern. > I guess many software stack have an option to run on https and http both by > default. I am slightly curious to understand whats happening "https" if > there is not certificate installed..
Yes, that's a good question. In the default case, it'll accept all certs provided by the endpoint and can possibly be mitm-ed. However, GoCD agents have the ability to verify certificates fully and provide end-to-end transport security, if you provide a cert file. Here are the details: https://docs.gocd.org/current/installation/ssl_tls/end_to_end_transport_security.html Cheers, Aravind -- You received this message because you are subscribed to the Google Groups "go-cd" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
