Verify certificate chain and hostname [New in Security Center 1.3]
Configure the com.glide.communications.httpclient.verify_hostname property to prevent man-in-the-middle-attacks by ensuring that the certification verification process is executed.
If com.glide.communications.httpclient.verify_hostname is not set to true, then this could enable man-in-the-middle attacks, in which communications between two parties are intercepted. Setting this property to false disables the certificate verification process. To remediate this security threat, set com.glide.communications.httpclient.verify_hostname to true to prevent the http client from connecting to a potentially harmful hostname.
More information
| Attribute | Description |
|---|---|
| Configuration name | com.glide.communications.httpclient.verify_hostname |
| Configuration type | System Properties (/sys_properties_list.do) |
| Data type | boolean |
| Recommended value | true |
| Default value | false |
| Category | Communications |
| Security risk |
|
| Dependencies and prerequisites | None |
| Functional impact | Verifies hostname and certificate chain presented by remote secure socket layer (SSL) hosts. Set this property to true to secure against Man-in-the-middle (MITM) attacks. Note: This property overrides the
com.glide.communications.trustmanager_trust_all, property. |