Hi Evan,
On Sat, Aug 31, 2013 at 04:20:38PM -0700, Evan Broder wrote:
> > It is very clean and well documented, good job! It looks OK to me. Do
> > you want me to merge it now or do you prefer to resend it with the doc ?
> > It's as you like, just tell me what you prefer.
>
> I've attached a new
Hi Evan,
On Sun, Aug 04, 2013 at 07:44:11PM +0100, Evan Broder wrote:
> Although HAProxy can verify the SSL certs of an SSL-enabled server
> against a CA chain, it currently doesn't check the actual hostname on
> the cert, meaning that it will accept any cert signed by any major CA
> (and thus can
Although HAProxy can verify the SSL certs of an SSL-enabled server
against a CA chain, it currently doesn't check the actual hostname on
the cert, meaning that it will accept any cert signed by any major CA
(and thus can be man-in-the-middle'd simply by controlling DNS).
I've been working on a pat
3 matches
Mail list logo
