Re: [dev] [surf] badssl.com

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

From: Alexander Keller <contact_AT_nycroth.com>
Date: Thu, 13 Oct 2016 08:42:36 -0400

> That's in the config, the user should be responsible for it.
True, it is in the config. It's also the default. If the alternative is
too much, perhaps changing
strictssl = FALSE \* Refuse untrusted SSL connections *\
to
strictssl = FALSE \* Validate SSL certificates from server *\
would help better inform what it does. My initial understanding when I
used surf was that this would simply deny me the option of bypassing SSL
errors. Not silently ignore them.
Received on Thu Oct 13 2016 - 14:42:36 CEST

This archive was generated by hypermail 2.3.0 : Thu Oct 13 2016 - 14:48:11 CEST