Matt Lewandowsky wrote: >> From "Alfred Peng" <Alfred.Peng at Sun.COM>, August 07, 2009 2:40 AM: > >> On 08/ 7/09 04:12 PM, Hugh McIntyre wrote: >>> 2. Solaris ships with SOUP_SESSION_SSL_CA_FILE set to /dev/null (HTTPS >>> disabled) but with documentation saying that users can call >>> g_object_set(..., SOUP_SESSION_SSL_CA_FILE, ...) to define either a >>> valid CA file to enable support with checking or reset to NULL which >>> seems to be claimed to turn checking back off. (Details in the link >>> above). >> >> Option #2 looks good to me. I'll add those to the manual page if people >> agree with this. > > I agree. This option seems sane to me, as well, as long as consumers of > WebKit can *easily* change this. i.e. The man page needs to have an > explicit example as to how to enable the CA file (or /dev/null).
So why not make this case dependent on the existence of a useful CA file? -- Darren J Moffat
