git Service des IN-Ulm e.V. Erkunden Hilfe
Anmelden
cbiedl
/
ngircd
1
0
Fork 0
Dateien
Struktur: 8813aafd87
Branches Tags
ngircd
/
debian
/
patches
/
0015-S2S-TLS-Verify-the-TLS-certificates-by-default.patch

0015-S2S-TLS-Verify-the-TLS-certificates-by-default.patch 808 B
Verlauf Originalformat

123456789101112131415161718192021222324252627 
  1. From 7086f4d15e240f5394b0b3e24d100f9c4fe4c792 Mon Sep 17 00:00:00 2001
    2. 

  2. From: Alexander Barton <alex@barton.de>
    3. 

  3. Date: Sat, 6 Jan 2024 15:55:54 +0100
    4. 

  4. Subject: [PATCH 15/20] S2S-TLS: Verify the TLS certificates by default
    5. 

  5. 

  6. This is already mentioned as the default in the manual page and the
    7. 

  7. sample configuration file, but was actually not enabled in the code!
    8. 

  8. 

  9. (cherry picked from commit 180e2ec1359378172135472148c99a2d14e873cc)
    10. 

  10. ---
    11. 

  11.  src/ngircd/conf.c | 5 +++++
    12. 

  12.  1 file changed, 5 insertions(+)
    13. 

  13. 

  14. --- a/src/ngircd/conf.c
    15. 

  15. +++ b/src/ngircd/conf.c
    16. 

  16. @@ -2298,6 +2298,11 @@
    17. 

  17.  	Proc_InitStruct(&Server->res_stat);
    18. 

  18.  	Server->conn_id = NONE;
    19. 

  19.  	memset(&Server->bind_addr, 0, sizeof(Server->bind_addr));
    20. 

  20. +
    21. 

  21. +#ifdef SSL_SUPPORT
    22. 

  22. +	/* Verify SSL connections by default! */
    23. 

  23. +	Server->SSLVerify = true;
    24. 

  24. +#endif
    25. 

  25.  }
    26. 

  26.  
    27. 

  27.  /* -eof- */
    28.