Microsoft LDAP Channel Binding
Weijun Wang
weijun.wang at oracle.com
Wed Jan 22 07:40:41 UTC 2020
> On Dec 18, 2019, at 9:14 PM, Michael Osipov <1983-01-06 at gmx.net> wrote:
>
> ...
> A few issues must be addressed first:
> * Java's SASL GSSAPI mech has a bug which will make all default installations fail.
> I have reported this years ago and this must be immediately fixed [3].
>
...
> [3] https://bugs.openjdk.java.net/browse/JDK-8160818
My current plan is to update the default value of SERVER_AUTH: "false" if only "auth" is requested, and "true" if one of "auth-int" or "auth-conf" is requested. I'll see what compatibility impact there would be for other actions.
Thanks,
Max
More information about the security-dev
mailing list