Hi Jun, I have updated the KIP with examples on setting ssl.endpoint.identification. algorithm to an empty string. It turns out I had to update ConfigCommand to do this for dynamic configs, I have updated the PR as well.
Thanks for pointing this out! Regards, Rajini On Fri, May 11, 2018 at 12:34 AM, Ismael Juma <ism...@juma.me.uk> wrote: > Thanks for the KIP, +1 (binding) from me. > > Ismael > > On Wed, May 9, 2018 at 8:29 AM Rajini Sivaram <rajinisiva...@gmail.com> > wrote: > > > Hi all, > > > > Since there have been no objections on this straightforward KIP, I would > > like to initiate the voting process. KIP-294 proposes to use a secure > > default value for endpoint identification when using SSL as the security > > protocol. The KIP Is here: > > > > > > https://cwiki.apache.org/confluence/display/KAFKA/KIP- > 294+-+Enable+TLS+hostname+verification+by+default > > > > If there are any concerns, please add them to this thread or the > discussion > > thread (https://www.mail-archive.com/dev@kafka.apache.org/msg87549.html) > > > > Regards, > > > > Rajini > > >
