Advance Notice - Apple to enforce trust chain for self-signed SSL certificates from January 2017

To subscribe by email, display this forum, scroll to the end and select ‘Subscribe Forum’.
Post Reply
tsupartono
Posts: 289
Joined: Tue Apr 17, 2012 7:21 pm

Advance Notice - Apple to enforce trust chain for self-signed SSL certificates from January 2017

Post by tsupartono » Thu Dec 01, 2016 1:06 am

If you use self-signed certificates, you'd need to install your (self-generated) CA on every iOS client device as the option "Accept invalid SSL certificates" will no longer work for LongRange (iOS) downloaded on or after January 2017.

As per LANSA's recommendation (http://longrange.lansa.com.au/viewtopic.php?f=13&t=468), even if you are not using iOS, bear in mind that having this option on leaves your system vulnerable to the man-in-the-middle attack. This option must be used only during testing and should never be turned on in production system.

Post Reply