Issue switching InCommon from FileBacked Metadata Provider to MDQ
Nic Roy
nroy at internet2.edu
Mon Dec 14 23:00:27 UTC 2020
/s/production pipeline/getting MITMed/g
On 14 Dec 2020, at 15:27, Nic Roy wrote:
> From a security perspective the only reason to prefer https over http
> is if you think our metadata production pipeline is vulnerable to a
> comment injection attack or something like that. I don’t think we
> are, but https might give people the “warm cozies”.
>
> Nic
>
> On 14 Dec 2020, at 15:05, Hucker, Taylor wrote:
>
>> Switching to http worked perfectly for the few InCommon SPs I’ve
>> tested. Thanks for quick fix.
>> Ill look into importing root into cacerts and see if I can flip back
>> to s.
>>
>>
>>
>> Thanks,
>> Taylor
>>
>> --------------------------------
>> Taylor Hucker
>> Applications System Administrator
>> Texas A&M University - Corpus Christi
>> Taylor.Hucker at tamucc.edu<mailto:Taylor.Hucker at tamucc.edu>
>
>
>> --
>> For Consortium Member technical support, see
>> https://wiki.shibboleth.net/confluence/x/coFAAg
>> To unsubscribe from this list send an email to
>> users-unsubscribe at shibboleth.net
> --
> For Consortium Member technical support, see
> https://wiki.shibboleth.net/confluence/x/coFAAg
> To unsubscribe from this list send an email to
> users-unsubscribe at shibboleth.net
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20201214/7e9faa41/attachment.htm>
More information about the users
mailing list