monero/contrib/epee
Lee Clagett a3b0284837 Change SSL certificate file list to OpenSSL builtin load_verify_location
Specifying SSL certificates for peer verification does an exact match,
making it a not-so-obvious alias for the fingerprints option. This
changes the checks to OpenSSL which loads concatenated certificate(s)
from a single file and does a certificate-authority (chain of trust)
check instead. There is no drop in security - a compromised exact match
fingerprint has the same worse case failure. There is increased security
in allowing separate long-term CA key and short-term SSL server keys.

This also removes loading of the system-default CA files if a custom
CA file or certificate fingerprint is specified.
2019-04-06 23:47:06 -04:00
..
demo default initialize rpc structures 2019-03-04 22:38:03 +00:00
include Change SSL certificate file list to OpenSSL builtin load_verify_location 2019-04-06 23:47:06 -04:00
src Change SSL certificate file list to OpenSSL builtin load_verify_location 2019-04-06 23:47:06 -04:00
tests default initialize rpc structures 2019-03-04 22:38:03 +00:00
CMakeLists.txt Update 2019 copyright 2019-03-05 22:05:34 +01:00
LICENSE.txt year updated in license 2015-01-02 18:52:46 +02:00
README.md year updated in license 2015-01-02 18:52:46 +02:00

epee - is a small library of helpers, wrappers, tools and and so on, used to make my life easier.