Re: [dev] [surf] badssl.com

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

From: Ali H. Fardan <raiz_AT_firemail.cc>
Date: Thu, 13 Oct 2016 15:49:47 +0300

On 2016-10-13 15:42, Alexander Keller wrote:
>> That's in the config, the user should be responsible for it.
> True, it is in the config. It's also the default. If the alternative is
> too much, perhaps changing
> strictssl = FALSE \* Refuse untrusted SSL connections *\
> to
> strictssl = FALSE \* Validate SSL certificates from server *\
> would help better inform what it does. My initial understanding when I
> used surf was that this would simply deny me the option of bypassing
> SSL
> errors. Not silently ignore them.

I agree, it's confusing, send a patch to hackers_AT_, they might apply it.
Received on Thu Oct 13 2016 - 14:49:47 CEST

This archive was generated by hypermail 2.3.0 : Thu Oct 13 2016 - 15:00:13 CEST