Commit e055c138 authored by Tails developers's avatar Tails developers

tails-security-check: use the new CA bundle to authenticate https://tails.boum.org.

... instead of hardcoding the path to the CA who signed the current certificate.
This will allow us to handle future CA transitions in a nicer way, and without
modifying this program anymore.
parent 47058877
......@@ -48,7 +48,7 @@ use Net::SSLeay;
BEGIN {
IO::Socket::SSL::set_ctx_defaults(
verify_mode => Net::SSLeay->VERIFY_PEER(),
ca_file => '/etc/ssl/certs/UTN_USERFirst_Hardware_Root_CA.pem',
ca_file => '/usr/local/etc/ssl/certs/tails.boum.org-CA.pem',
);
}
use LWP::UserAgent; # needs to be *after* IO::Socket::SSL's initialization
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment