[prev in list] [next in list] [prev in thread] [next in thread]
List: horde-bugs
Subject: [Tickets #12929] Re: Horde_Http: Fix disabling SSL certificate hostname check
From: noreply () bugs ! horde ! org
Date: 2014-11-26 9:59:48
Message-ID: 20141126095948.Horde.vUhvdPudKUxUCmPjgFi8Uw2 () bugs ! horde ! org
[Download RAW message or body]
DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.
Ticket URL: https://bugs.horde.org/ticket/12929
------------------------------------------------------------------------------
Ticket | 12929
Updated By | skhorde@smail.inf.fh-bonn-rhein-sieg.de
<skhorde@smail.inf.fh-bonn-rhein-sieg.de>
Summary | Horde_Http: Fix disabling SSL certificate hostname
| check
Queue | Horde Framework Packages
Version | Git master
Type | Bug
State | Feedback
Priority | 1. Low
Milestone |
Patch | 1
Owners |
------------------------------------------------------------------------------
Thomas Jarosch <thomas.jarosch@intra2net.com> (2014-07-01 07:21) wrote:
> I'm not sure if that is really a good situation. Disabling peer
> verification and host name verification is really two different
> things. On the other hand, you probably want both if you intend less
> strict SSL verification. Maybe introduce some "verifiyLoose"
> setting...
the idea of the patch was to re-gain BC with the existing horde code
before the curl update.
f.e., [mms] commited just the same thing for the Imap_Client:
https://github.com/horde/horde/commit/0dcd8ae25ef273240693f78a4e038088e0e569f5
Notice the
+ 'ssl' => array(
+ 'verify_peer' => false,
+ 'verify_peer_name' => false
+ )
in there.
--
bugs mailing list
Frequently Asked Questions: http://wiki.horde.org/FAQ
To unsubscribe, mail: bugs-unsubscribe@lists.horde.org
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic