Removing --no-cert-check
David Woodhouse
dwmw2 at infradead.org
Wed Sep 7 07:52:16 PDT 2016
You shouldn't be using this. So I removed it.
Fix your server's certs (perhaps using LetsEncrypt), or fetch the cert
and use it in a --cafile option, or use the --servercert option (which
is helpfully suggested now on the command line when you are prompted to
manually accept a cert).
But don't use --no-cert-check. That's just insecure. And won't work any
more from 7.08 onwards.
--
David Woodhouse Open Source Technology Centre
David.Woodhouse at intel.com Intel Corporation
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 5760 bytes
Desc: not available
URL: <http://lists.infradead.org/pipermail/openconnect-devel/attachments/20160907/101baee9/attachment.bin>
More information about the openconnect-devel
mailing list