Summary: | Security bug/Regression: altSubjectMatch disappeared with the move to plasma-nm | ||
---|---|---|---|
Product: | [Plasma] plasma-nm | Reporter: | Wilco Baan Hofman <wilco> |
Component: | editor | Assignee: | Lukáš Tinkl <lukas> |
Status: | RESOLVED FIXED | ||
Severity: | grave | CC: | jgrulich, simonandric5 |
Priority: | NOR | ||
Version: | unspecified | ||
Target Milestone: | --- | ||
Platform: | Other | ||
OS: | Linux | ||
Latest Commit: | Version Fixed In: | 5.5.0 |
Description
Wilco Baan Hofman
2015-01-11 10:15:17 UTC
Hi, wpa_supplicant just committed a fix. There is a new parameter called domain_match, which has the following behaviour: It exact-matches against the DNS parts of subjectAltName and falls back to an exact CN match. To be implemented to fix the security bug: - a GUI component for server DNS name Please include the domain_match parameter in the GUI. Git commit 92faca4156698df2aee896dbd3a1a6734be58056 by Jan Grulich. Committed on 22/09/2015 at 11:04. Pushed by grulich into branch 'master'. Add WPA/WPA2 Enterprise (partial) validation + options to add subjectMatch and altSubjectMatch properties M +2 -0 libs/editor/CMakeLists.txt A +68 -0 libs/editor/listvalidator.cpp [License: GPL (v2/3)] A +47 -0 libs/editor/listvalidator.h [License: GPL (v2/3)] M +142 -1 libs/editor/settings/security802-1x.cpp M +13 -1 libs/editor/settings/security802-1x.h M +105 -49 libs/editor/settings/ui/802-1x.ui M +6 -0 libs/editor/settings/wifisecurity.cpp A +94 -0 libs/editor/widgets/editlistdialog.cpp [License: GPL (v2/3)] A +58 -0 libs/editor/widgets/editlistdialog.h [License: GPL (v2/3)] |