The client now tells Curl to look for certificates in /etc/ssl/certs
under linux. Commented the line in client.conf that was allowing clients to connect to ATSs whose certificates authenticity could not be verified. :-).
This commit is contained in:
parent
5e1711d870
commit
502559daa1
@ -58,7 +58,7 @@
|
||||
# process to impersonate an ATS and obtain information that
|
||||
# is confidential such as username and passwords.
|
||||
#
|
||||
AllowUntrustedCerts true
|
||||
#AllowUntrustedCerts true
|
||||
|
||||
#
|
||||
# UsersCannotAllowInvalidCerts setting.
|
||||
|
@ -208,6 +208,12 @@ OpenRpcSession(
|
||||
setOptError = true;
|
||||
}
|
||||
|
||||
if ((result = curl_easy_setopt(pSession->hCurl, CURLOPT_CAPATH, "/etc/ssl/certs")) != CURLE_OK)
|
||||
{
|
||||
DbgTrace(0, "-OpenRpcSession- Error setting CURLOPT_CAPATH, code = %d\n", result);
|
||||
setOptError = true;
|
||||
}
|
||||
|
||||
pSession->headers = curl_slist_append(pSession->headers, "Content-Type: text/html");
|
||||
pSession->headers = curl_slist_append(pSession->headers, "Expect:");
|
||||
if ((result = curl_easy_setopt(pSession->hCurl, CURLOPT_HTTPHEADER, pSession->headers)) != CURLE_OK)
|
||||
|
Loading…
Reference in New Issue
Block a user