diff options
author | Brion Vibber <brion@pobox.com> | 2010-05-21 10:12:39 -0700 |
---|---|---|
committer | Brion Vibber <brion@pobox.com> | 2010-05-21 10:12:39 -0700 |
commit | 2c12d837c693a816541d32dd044de5277a46336d (patch) | |
tree | ef0594db2067afbd93bbc3e702ace595319a9250 /lib/default.php | |
parent | 68305d4b6848cec6afe887ee2a5735515060770e (diff) |
Disable SSL peer/hostname verification for HTTPClient unless we've configured a trusted CA bundle like this: $config['http']['ssl_cafile'] = '/usr/lib/ssl/certs/ca-certificates.crt';
The previous state was failing on all HTTPS hits due to HTTP_Request2 library turning on the validation check but not specifying a CA file.
Diffstat (limited to 'lib/default.php')
-rw-r--r-- | lib/default.php | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/lib/default.php b/lib/default.php index ab5f294de..950c6018d 100644 --- a/lib/default.php +++ b/lib/default.php @@ -304,4 +304,7 @@ $default = array('subscribers' => true, 'members' => true, 'peopletag' => true), + 'http' => // HTTP client settings when contacting other sites + array('ssl_cafile' => false // To enable SSL cert validation, point to a CA bundle (eg '/usr/lib/ssl/certs/ca-certificates.crt') + ), ); |