Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP

Loading…

The library should ship with a CA cert whitelist #88

Closed
andrewmbenton opened this Issue · 1 comment

2 participants

@andrewmbenton

The library currently ships with the specific Twilio server cert served by the Twilio API, effectively pinning that cert to the library. This is bad, since the library will break when the API changes certs after expiration or invalidation.

The library should ship with a standard CA cert whitelist such as the one here: http://curl.haxx.se/docs/caextract.html

@kevinburke

agreed, will try to figure out a way to test this change today.

@kevinburke kevinburke closed this issue from a commit
Kevin Burke Verify SSL with a standard CA cert whitelist
Uses the cacert.pem file generated by Mozilla, and curated here:
http://curl.haxx.se/docs/caextract.html

Tested extensively on a dev box.

Fixes #88
6198bfd
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Something went wrong with that request. Please try again.