topic Re: Has SPL-37637 been resolved? in Security

Has SPL-37637 been resolved?

mundus — Tue, 27 Dec 2011 22:18:12 GMT

I would like to require that our forwarders use SSL. I've seen references to a bug in 4.2.4 that will break when that setting in exists in inputs.conf. Has in been resolved in 4.2.5? I've searched the site for release notes that detail the bugs fixed in the release, but couldn't find anything.

Thx.

Craig

Re: Has SPL-37637 been resolved?

gkanapathy — Tue, 27 Dec 2011 23:35:09 GMT

This bug does not prevent the use of SSL. Detailed steps to do so are here, though the standard docs are also correct. This bug prevents validation of certificates on the client, i.e., forwarder by the indexer. This is not common.

However, the bug is not fixed in 4.2.5, but should be fixed in 4.3, which is due out imminently.

Re: Has SPL-37637 been resolved?

mundus — Tue, 27 Dec 2011 23:37:36 GMT

We've got some pretty stringent security requirements and don't want a malicious client to interject bad data into the system.

Thx.

Re: Has SPL-37637 been resolved?

echalex — Tue, 17 Apr 2012 07:16:10 GMT

Support has told me that the bug indeed has been fixed in 4.3