Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Cancel SSL/HTTPS handshake if no suited cert is found #13

Open
gschoenberger opened this issue Dec 17, 2015 · 1 comment
Open

Cancel SSL/HTTPS handshake if no suited cert is found #13

gschoenberger opened this issue Dec 17, 2015 · 1 comment

Comments

@gschoenberger
Copy link

Hi goochjj,

currently if no suitable certificate is found in a Service declaration, the first certificate is issued to the client. If the domain does not suite the certificate the client gets an certificate error in his browser.
Is there a way to disable this behavior, i.e. just cancel the SSL/HTTPS handshake?

THX, Georg

@gschoenberger gschoenberger changed the title Cancle SSL/HTTPS handshake if no suited cert is found Cancel SSL/HTTPS handshake if no suited cert is found Dec 17, 2015
@goochjj
Copy link
Owner

goochjj commented Dec 17, 2015

Not currently. I can't think of a compelling reason to implement this. If
you think there's a compelling use case you should bring it up on the Pound
mailing list (www.apsis.ch/pound has the links)

It might be related to this thread:
http://www.apsis.ch/pound/pound_list/archive/2015/2015-10/1445607472000

On Thu, Dec 17, 2015 at 9:32 AM, Georg Schönberger <[email protected]

wrote:

Hi goochjj,

currently if no suitable certificate is found in a Service declaration,
the first certificate is issued to the client. If the domain does not suite
the certificate the client gets an certificate error in his browser.
Is there a way to disable this behavior, i.e. just cancle the SSL/HTTPS
handshake?

THX, Georg


Reply to this email directly or view it on GitHub
#13.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants