Hi Lukas,
that sounds unnecessary complicated and risky to write our own
verification, when OpenSSL can now perform the verification directly.
Perhaps one could override SSLCtrl in ssl_openssl_lib, so it activates
the verification when seting the SNI host
Best,
Benito
Am 13.08.2018 um 11:29 schrieb Lukas Gebauer:
how do you make sure the https connection is really secure and the
server uses a valid certificate?
And what about to use OnVerifyCert event and verify certificate by
any your code?
For example, read CN from certificate and compare it with your
hostname.
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
synalist-public mailing list
synalist-public@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/synalist-public
