Branch: refs/heads/master
Home: https://github.com/NixOS/nix
Commit: a49514a2e2325a7926c90e2dab1f504d7aa78255
https://github.com/NixOS/nix/commit/a49514a2e2325a7926c90e2dab1f504d7aa78255
Author: Utku Demir <[email protected]>
Date: 2015-09-25 (Fri, 25 Sep 2015)
Changed paths:
M scripts/download-from-binary-cache.pl.in
Log Message:
-----------
Also set CURLOPT_SSL_VERIFYHOST=0 when "verify-https-binary-caches" is false
This makes that option even more insecure, by also not checking the SSL host.
But without this parameter, one can still get SSL errors even when
"verify-https-binary-caches" is false, which is unexpected IMO.
Commit: bdc4a0b54d54146448061dd9a248212f98a9f801
https://github.com/NixOS/nix/commit/bdc4a0b54d54146448061dd9a248212f98a9f801
Author: Eelco Dolstra <[email protected]>
Date: 2015-09-27 (Sun, 27 Sep 2015)
Changed paths:
M scripts/download-from-binary-cache.pl.in
Log Message:
-----------
Merge pull request #654 from utdemir/more-insecure-verify-https-binary-caches
Also set CURLOPT_SSL_VERIFYHOST=0 when "verify-https-binary-caches" is false
Compare: https://github.com/NixOS/nix/compare/aaf8a1c16bb8...bdc4a0b54d54_______________________________________________
nix-commits mailing list
[email protected]
http://lists.science.uu.nl/mailman/listinfo/nix-commits
