Removing --no-cert-check

Dennis Knorr dennis.knorr at gmx.net
Wed Sep 7 12:27:20 PDT 2016


You're right for production. But for Testing and Development, i would 
rather prefer that you keep it :) Perhaps just remove it from 
documentation *cough*

Yours,
Dennis

Am 07.09.2016 um 16:52 schrieb David Woodhouse:
> You shouldn't be using this. So I removed it.
>
> Fix your server's certs (perhaps using LetsEncrypt), or fetch the cert
> and use it in a --cafile option, or use the --servercert option (which
> is helpfully suggested now on the command line when you are prompted to
> manually accept a cert).
>
> But don't use --no-cert-check. That's just insecure. And won't work any
> more from 7.08 onwards.
>
>
>
> _______________________________________________
> openconnect-devel mailing list
> openconnect-devel at lists.infradead.org
> http://lists.infradead.org/mailman/listinfo/openconnect-devel
>



More information about the openconnect-devel mailing list