diff options
| author | jvoisin | 2018-08-29 08:55:49 +0000 |
|---|---|---|
| committer | xXx-caillou-xXx | 2018-08-29 10:55:49 +0200 |
| commit | 64e52596abaf4bdd4c17f79c4e8acf25d1a452b4 (patch) | |
| tree | 5452af804c25304cabe0f7e1160263fad25c3bf9 /doc/source/features.rst | |
| parent | a0300b15a3afffe02c737d263c3d6dd31ac307b7 (diff) | |
Verify certs (#223)
Ensure that certificates are verified in curl
should close #47
Diffstat (limited to 'doc/source/features.rst')
| -rw-r--r-- | doc/source/features.rst | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/doc/source/features.rst b/doc/source/features.rst index 540e982..f676468 100644 --- a/doc/source/features.rst +++ b/doc/source/features.rst | |||
| @@ -344,6 +344,21 @@ Snuffleupagus can prevent the execution of this kind of file. A good practice | |||
| 344 | would be to use a different user to run PHP than for administrating the website, | 344 | would be to use a different user to run PHP than for administrating the website, |
| 345 | and using this feature to lock this up. | 345 | and using this feature to lock this up. |
| 346 | 346 | ||
| 347 | |||
| 348 | .. _mandatory-cert-validation: | ||
| 349 | |||
| 350 | Mandatory certificates validation | ||
| 351 | ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||
| 352 | |||
| 353 | It's a common practise to disable `certificate validation <https://en.wikipedia.org/wiki/Transport_Layer_Security>`__ | ||
| 354 | during development for convenience's sake. Unfortunately, it's equally common | ||
| 355 | to forget to turn it back on. | ||
| 356 | |||
| 357 | Snuffleupagus can prevent php code from turning off certificate validation | ||
| 358 | for anything `cURL <https://secure.php.net/manual/en/book.curl.php>`__-based. | ||
| 359 | |||
| 360 | |||
| 361 | |||
| 347 | .. _stream-wrapper-whitelist-feature: | 362 | .. _stream-wrapper-whitelist-feature: |
| 348 | 363 | ||
| 349 | Whitelist of stream-wrappers | 364 | Whitelist of stream-wrappers |