From 7086f4d15e240f5394b0b3e24d100f9c4fe4c792 Mon Sep 17 00:00:00 2001
From: Alexander Barton <alex@barton.de>
Date: Sat, 6 Jan 2024 15:55:54 +0100
Subject: [PATCH 15/20] S2S-TLS: Verify the TLS certificates by default

This is already mentioned as the default in the manual page and the
sample configuration file, but was actually not enabled in the code!

(cherry picked from commit 180e2ec1359378172135472148c99a2d14e873cc)
---
 src/ngircd/conf.c | 5 +++++
 1 file changed, 5 insertions(+)

--- a/src/ngircd/conf.c
+++ b/src/ngircd/conf.c
@@ -2298,6 +2298,11 @@
 	Proc_InitStruct(&Server->res_stat);
 	Server->conn_id = NONE;
 	memset(&Server->bind_addr, 0, sizeof(Server->bind_addr));
+
+#ifdef SSL_SUPPORT
+	/* Verify SSL connections by default! */
+	Server->SSLVerify = true;
+#endif
 }
 
 /* -eof- */