-
Type: Improvement
-
Resolution: Unresolved
-
Priority: Major - P3
-
None
-
Affects Version/s: 2.5.2
-
Component/s: Internal Client, Shell
-
Server Security
In our current design we have two hardcoded SSL_CTX objects for incoming and outgoing connections. This makes it impossible to create multiple outgoing connections using different certificates.
Actions:
- Expand the SSL server/driver code to handle an arbitrary number of outgoing SSL_CTX objects.
- Build shell functionality to specify which certificate should be used for a certain connection. This most likely involves expanding the connect() call to take a certificate path.