Hi Nenad, On Tue, Jun 25, 2013 at 02:47:51AM +0200, Nenad Merdanovic wrote: > Hey Willy, > > This is what the docs say: > > "This option enables SSL ciphering on outgoing connections to the > server. At the moment, server certificates are not checked, so this is > prone to man in the middle attacks." > > If I got Lukas and Qingshan right, that's what they are discussing.
Oh crap, you're right! In fact we put "verify", "ca-file" and "crl-file" on the server side in 1.5-dev13 while SSL alone was in 1.5-dev12. And of course the doc was not updated. That explains a lot of things! Thanks, Willy
