TransparentClientHandler doesn't use CertificateManager.RootCertificate for AuthenticateAsServerAsync

[jmh76]

A genuine certificate can be set to ProxyServer.CertificateManager.RootCertificate and this should be used rather than creating a certificate on the fly.

-                            var certificate = await CertificateManager.CreateCertificateAsync(certName);
+                           var certificate = CertificateManager.RootCertificate ?? await CertificateManager.CreateCertificateAsync(certName);

[justcoding121]

For security reasons, a root certificate should never be used as a certificate for any hostname.

If you want to use a single genuine certificate for all requests, use any genuine certificate as shown below in latest beta release.

var transparentEndPoint = new TransparentProxyEndPoint(IPAddress.Any, 443, true)
{
 GenericCertificate = new X509Certificate2(Path.Combine(System.IO.Path.GetDirectoryName(System.Reflection.Assembly.GetExecutingAssembly().Location), "genericcert.pfx"), "password")
};

[jmh76]

good point thanks