On Wed, 2024-05-08 at 17:59 -0600, Oscar Velazquez wrote: > > > I have a hunch: it is to change server-cert-hash, but I do not know > what the correct values could be or if this is a valid approach. > Any help would be appreciated. >
Probably the sha1 fingerprint of the (real) server's SSL certificate. In http://david.woodhou.se/proxy.go there's support for changing such a hash to the hash of the cert you're using for the proxy itself.
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ openconnect-devel mailing list openconnect-devel@lists.infradead.org http://lists.infradead.org/mailman/listinfo/openconnect-devel
