mirror of
https://git.eworm.de/cgit/routeros-scripts
synced 2025-06-21 01:15:42 +02:00
certs: fix curl false positives...
... when default capath contains system certs If curl has a default capath (debian 12 capath=/etc/ssl/certs) it will add those certs and return ok to any valid https url, defeating the intended use of the cacert option in the Makefile that validates sites and certs. To avoid that, adding option "--capath /dev/null" overrides the default value, if any. Closes: https://github.com/eworm-de/routeros-scripts/pull/88
This commit is contained in:
Miquel Bonastre
Christian Hesse
parent
414c83ef81
commit
aa294b4c67
1 changed files with 1 additions and 1 deletions
|
|
@ -29,4 +29,4 @@ DOMAINS = \
|
|||
all: $(DOMAINS)
|
||||
|
||||
$(DOMAINS):
|
||||
curl --output /dev/null --silent --connect-timeout 5 --cacert $(notdir $@).pem https://$(dir $@)
|
||||
curl --output /dev/null --silent --connect-timeout 5 --capath /dev/null --cacert $(notdir $@).pem https://$(dir $@)
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue