Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add --insecure option to command line tools. #8416

Merged
merged 1 commit into from Feb 7, 2021
Merged

Add --insecure option to command line tools. #8416

merged 1 commit into from Feb 7, 2021

Conversation

yossigo
Copy link
Member

@yossigo yossigo commented Jan 28, 2021

Disable certificate validation, making it possible to connect to servers
without configuring full trust chain.

The use of this option is insecure and makes the connection vulnerable
to man in the middle attacks.

Fixes #8404

@yossigo
Add --insecure option to command line tools.
cb3f7e2 
Disable certificate validation, making it possible to connect to servers
without configuring full trust chain.

The use of this option is insecure and makes the connection vulnerable
to man in the middle attacks.
@yossigo yossigo requested a review from a team January 28, 2021 13:03
@yossigo yossigo added this to To do in 6.2 via automation Jan 28, 2021
@yossigo yossigo moved this from To do to In progress in 6.2 Jan 28, 2021
@yossigo yossigo added approval-needed Waiting for core team approval to be merged release-notes indication that this issue needs to be mentioned in the release notes labels Jan 28, 2021
@oranagra oranagra added state:major-decision Requires core team consensus release-notes indication that this issue needs to be mentioned in the release notes and removed release-notes indication that this issue needs to be mentioned in the release notes labels Jan 28, 2021
@yossigo yossigo merged commit be83bb1 into redis:unstable Feb 7, 2021
@yossigo yossigo deleted the cli-insecure-option branch February 7, 2021 10:37
@oranagra oranagra moved this from In progress to Done in 6.2 Feb 7, 2021
@oranagra oranagra mentioned this pull request Feb 22, 2021
Merged
JackieXie168 pushed a commit to JackieXie168/redis that referenced this pull request Mar 2, 2021
@yossigo
Add --insecure option to command line tools. (redis#8416)
2179525 
Disable certificate validation, making it possible to connect to servers
without configuring full trust chain.

The use of this option is insecure and makes the connection vulnerable
to man in the middle attacks.
@yossigo yossigo mentioned this pull request Mar 9, 2021
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@itamarhaber itamarhaber itamarhaber approved these changes

@oranagra oranagra oranagra approved these changes

Assignees
No one assigned
Labels
approval-needed Waiting for core team approval to be merged release-notes indication that this issue needs to be mentioned in the release notes state:major-decision Requires core team consensus
Projects
No open projects
6.2
  
Done
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

[NEW] redis-cli - Force trust SSL certificate
3 participants
@yossigo @itamarhaber @oranagra