source.dussan.org Git - tigervnc.git/commit

]> source.dussan.org Git - tigervnc.git/commit

author	Pierre Ossman <ossman@cendio.se>
	Thu, 21 May 2020 19:10:38 +0000 (21:10 +0200)
committer	Pierre Ossman <ossman@cendio.se>
	Thu, 21 May 2020 19:10:38 +0000 (21:10 +0200)
commit	b30f10c681ec87720cff85d490f67098568a9cba
tree	237eb6755aab5404ca701ef5586f007c1cf402d0	tree \| snapshot
parent	c75892f344fcae4a044578432d43948058d2330b	commit \| diff

Properly store certificate exceptions

The previous method stored the certificates as authorities, meaning that
the owner of that certificate could impersonate any server it wanted
after a client had added an exception.

Handle this more properly by only storing exceptions for specific
hostname/certificate combinations, the same way browsers or SSH does
things.

common/rfb/CSecurityTLS.cxx

diff | blob | history

High performance, multi-platform VNC client and server: https://github.com/TigerVNC/tigervnc

RSS Atom