From e622ae80a336ab1be294c7cc65cf538e50e4d1c8 Mon Sep 17 00:00:00 2001
From: Alexander Barton <alex@barton.de>
Date: Sat, 6 Jan 2024 15:55:54 +0100
Subject: [PATCH 15/20] S2S-TLS: Verify the TLS certificates by default

This is already mentioned as the default in the manual page and the
sample configuration file, but was actually not enabled in the code!

(cherry picked from commit 180e2ec1359378172135472148c99a2d14e873cc)
---
 src/ngircd/conf.c | 5 +++++
 1 file changed, 5 insertions(+)

--- a/src/ngircd/conf.c
+++ b/src/ngircd/conf.c
@@ -2467,6 +2467,11 @@
 	Proc_InitStruct(&Server->res_stat);
 	Server->conn_id = NONE;
 	memset(&Server->bind_addr, 0, sizeof(Server->bind_addr));
+
+#ifdef SSL_SUPPORT
+	/* Verify SSL connections by default! */
+	Server->SSLVerify = true;
+#endif
 }
 
 /* -eof- */