HTTP client hostname verification
Use the com.glide.communications.httpclient.verify_hostname to verify hostname and certificate chain presented by remote SSL hosts.
Set com.glide.communications.httpclient.verify_hostname to true to protect against MitM (man-in-the-middle) attacks in which communications between two parties are intercepted. Setting this property overrides the com.glide.communications.trustmanager_trust_all property.
More information
| Attribute | Description |
|---|---|
| Property name | com.glide.communications.httpclient.verify_hostname |
| Configuration type | System Properties (/sys_properties_list.do) |
| Configure in Instance Security Center | Yes |
| Purpose | Disable the certification verification process, which evaluates all certifications in the certification chain by checking the revocation status. |
| Type | true | false |
| Recommended value | true |
| Functional Impact | Allows a certificate that is not validated to connect to as an insecure host. |
| Security risk | (Medium) Allows or prevents the http client to connect to a potentially harmful hostname without exception. |
| References |
To learn more about adding or creating a system property, see Add a system property.