<div dir="ltr">Hello,<div><br></div><div>There has been a lengthy discussion going on for quite sometime on a review for swiftclient here :</div><div><br></div><div><a href="https://review.openstack.org/#/c/33473/">https://review.openstack.org/#/c/33473/</a></div>
<div><br></div><div>The review change the way works swiftclient to refuse to connect to insecure (i.e: self signed) SSL swift proxies unless you are specifying the --insecure flag to the CLI.</div><div><br></div><div>This change the default behavior of the client but that's for the greater good of a better security. </div>
<div><br></div><div>We are getting this merged now and want to make sure that people are aware of it first.</div><div><br></div><div>We would probably bump the version of swiftclient to 2.0 since this is a big change.</div>
<div><br></div><div>This would allow to close this CVE: <a href="https://bugs.launchpad.net/bugs/cve/2013-6396">https://bugs.launchpad.net/bugs/cve/2013-6396</a> and give ability to distributors for providing updates.</div>
<div><br></div><div>I'll announce it on -users and -operators after this is merged.</div><div><br></div><div>Chmouel.</div><div><br></div></div>