BIND 10 #83: cmdctl and missing key/certificate
BIND 10 Development
do-not-reply at isc.org
Thu Jun 24 12:01:18 UTC 2010
#83: cmdctl and missing key/certificate
----------------------+-----------------------------------------------------
Reporter: jreed | Owner: jreed
Type: defect | Status: reviewing
Priority: major | Milestone: 05. 3rd Incremental Release: Serious Secondary
Component: bind-ctl | Resolution:
Keywords: | Sensitive: 0
----------------------+-----------------------------------------------------
Changes (by zhanglikun):
* owner: shentingting => jreed
* status: assigned => reviewing
Comment:
cmdctl still runs when missing key/cert file(There is one error message
provided to user), but any user can’t login to cmdctl, cmdctl will deny
any connection from clients, but it doesn't do any impact on the service
provided by Auth server.
I don't want to let cmdctl exit, since it will make boss start cmdctl
again.
There is one open question: How to check the content of key or certificate
file? Have't found one better way to check key/certificate content. Now
the checking relies on the ssl.wrap_socket(), But I don't think it's the
best choice.
--
Ticket URL: <http://bind10.isc.org/ticket/83#comment:4>
BIND 10 Development <http://bind10.isc.org>
BIND 10 Development
More information about the bind10-tickets
mailing list