 |
 |
Hi @XMol - Actually, the 4.9.0 client is meant to duplicate the (insecure) existing reliance on reverse DNS, so Andy's case should be working as the DN matches the reverse DNS lookup of the IP. This is controllable by the environment variable `XrdSecGSITRUSTDNS` (defaults to `1`; set to `0` to disable use of reverse DNS lookups). Looks like there's a regression in master after SAN support was added - maybe a bad merge? Seems that the `trustdns` variable is set but never used, which is a touch suspicious. Brian -- You are receiving this because you commented. Reply to this email directly or view it on GitHub: https://github.com/xrootd/xrootd/issues/841#issuecomment-430573045 ######################################################################## Use REPLY-ALL to reply to list To unsubscribe from the XROOTD-DEV list, click the following link: https://listserv.slac.stanford.edu/cgi-bin/wa?SUBED1=XROOTD-DEV&A=1