<html><head><meta http-equiv="content-type" content="text/html; charset=utf-8"></head><body dir="auto"><div><span></span></div><div><meta http-equiv="content-type" content="text/html; charset=utf-8"><div><div style="direction: inherit;">I'll look into it. </div><div style="direction: inherit;"><br></div></div><div><br>On Sep 18, 2016, at 11:20 AM, Jaak Ristioja <<a href="mailto:jaak@ristioja.ee">jaak@ristioja.ee</a>> wrote:<br><br></div><blockquote type="cite"><div><span>Hi!</span><br><span></span><br><span>In src/mgr/curlhttpt.cpp:</span><br><span></span><br><span> /* Disable checking host certificate */</span><br><span> curl_easy_setopt(session, CURLOPT_SSL_VERIFYPEER, false);</span><br><span></span><br><span>Why? Afaik this allows the use of self-signed certificates for MiTM.</span><br><span></span><br><span>Best regards,</span><br><span>J</span><br><span></span><br><span>_______________________________________________</span><br><span>sword-devel mailing list: <a href="mailto:sword-devel@crosswire.org">sword-devel@crosswire.org</a></span><br><span><a href="http://www.crosswire.org/mailman/listinfo/sword-devel">http://www.crosswire.org/mailman/listinfo/sword-devel</a></span><br><span>Instructions to unsubscribe/change your settings at above page</span><br></div></blockquote></div></body></html>