[wp-trac] [WordPress Trac] #25007: WP_HTTP_Fsockopen does not verify SSL certificates
WordPress Trac
noreply at wordpress.org
Wed Aug 21 08:33:20 UTC 2013
#25007: WP_HTTP_Fsockopen does not verify SSL certificates
--------------------------+------------------
Reporter: rmccue | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: 3.7
Component: HTTP | Version:
Severity: major | Resolution:
Keywords: |
--------------------------+------------------
Comment (by rmccue):
Looks good but for two things:
1. cURL needs to be given the same cacert for consistency. There are
systems on which cURL doesn't have this, and it makes sense to use the
same certs for both.
2. The cacert path isn't changeable via the options passed into WP HTTP.
For people using self-signed certificates or non-standard stacks (e.g.
intranets), this should be possible.
The way I did it in Requests was to set the path in the higher level
options, then each transport uses the same option. I'd recommend similar
here.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/25007#comment:8>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list