Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Should verify SSL certificate #26

Open
jackburton79 opened this issue Oct 23, 2017 · 1 comment
Open

Should verify SSL certificate #26

jackburton79 opened this issue Oct 23, 2017 · 1 comment
Labels
enhancement
Milestone
Unscheduled

Comments

@jackburton79
Copy link
Owner

Currently it does not verify if the SSL certificate of the server is valid. It should do that, and provide an option to ignore invalid/self signed certificates.
@jackburton79 jackburton79 added this to the Unscheduled milestone Oct 25, 2017
@kapouik
Copy link

kapouik commented Nov 15, 2017

Be carreful : Many OCS server use self signed certificat (and it's a really good way to use it).

To ensure the security correctly, the agent must know the public key of the server's certificat and the field CN must be the same as the URL call by the agent. With this two validations, you can be sure that the server is the good one.

# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
Unscheduled
Development

No branches or pull requests
2 participants
@jackburton79 @kapouik