attack: make DefaultTLSConfig.InsecureSkipVerify false

No reason for it to be true, since the correspondent -insecure flag is false by default. Signed-off-by: Tomás Senart <tsenart@gmail.com>
tsenart · Jul 16, 2023 · 9fba769 · 9fba769
1 parent b2c13f8
commit 9fba769
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 2 deletions.
diff --git a/lib/attack.go b/lib/attack.go
@@ -60,7 +60,7 @@ var (
 	// DefaultLocalAddr is the default local IP address an Attacker uses.
 	DefaultLocalAddr = net.IPAddr{IP: net.IPv4zero}
 	// DefaultTLSConfig is the default tls.Config an Attacker uses.
-	DefaultTLSConfig = &tls.Config{InsecureSkipVerify: true}
+	DefaultTLSConfig = &tls.Config{InsecureSkipVerify: false}
 )
 
 // NewAttacker returns a new Attacker with default options which are overridden

diff --git a/lib/attack_test.go b/lib/attack_test.go
@@ -65,7 +65,7 @@ func TestAttackDuration(t *testing.T) {
 func TestTLSConfig(t *testing.T) {
 	atk := NewAttacker()
 	got := atk.client.Transport.(*http.Transport).TLSClientConfig
-	if want := (&tls.Config{InsecureSkipVerify: true}); !reflect.DeepEqual(got, want) {
+	if want := (&tls.Config{InsecureSkipVerify: false}); !reflect.DeepEqual(got, want) {
 		t.Fatalf("got: %+v, want: %+v", got, want)
 	}
 }