If the directory/file paths specified in this guide do not exist in your WSO2 product, see Directory Structure of WSO2 Products to locate the paths applicable to your product.
Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 3 Next »

By default, all WSO2 products based on Carbon 4.4.6 will have hostname verification disabled. This setting is disabled using the org.wso2.ignoreHostnameVerification property in the <PRODUCT_HOME>/bin/wso2server.sh file as shown below.

org.wso2.ignoreHostnameVerification=true

Be sure to set this property to false when you are going into production. This setting will enable hostname verification of HTTP requests and responses in the Carbon server, and thereby avoid security issues in production environments.

  • No labels