Re: Has SPL-37637 been resolved?

mundus · ‎12-27-2011

I would like to require that our forwarders use SSL. I've seen references to a bug in 4.2.4 that will break when that setting in exists in inputs.conf. Has in been resolved in 4.2.5? I've searched the site for release notes that detail the bugs fixed in the release, but couldn't find anything.

Thx.

Craig

gkanapathy · ‎12-27-2011

This bug does not prevent the use of SSL. Detailed steps to do so are here, though the standard docs are also correct. This bug prevents validation of certificates on the client, i.e., forwarder by the indexer. This is not common.

However, the bug is not fixed in 4.2.5, but should be fixed in 4.3, which is due out imminently.

echalex · ‎04-17-2012

Support has told me that the bug indeed has been fixed in 4.3

mundus · ‎12-27-2011

We've got some pretty stringent security requirements and don't want a malicious client to interject bad data into the system.

Thx.

C

Has SPL-37637 been resolved?

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Why Splunk Customers Should Attend Cisco Live 2026 Las Vegas

What Is the Name of the USB Key Inserted by Bob Smith? (BOTS Hint, Not the Answer)

Automating Threat Operations and Threat Hunting with Recorded Future

Join the Conversation