Skip to content

DEV Community

DEV Community is a community of 616,766 amazing developers

We're a place where coders share, stay up-to-date and grow their careers.

Create new account Log in

loading...

SSL::VERIFY_NONE - NEVER!

#ruby #ssl #security

Scott Watermasysk Feb 9, 2019 Originally published at scottw.com on Feb 7, 2019 ・1 min read

I saw this little doozy as recommend code for (Ruby) API access:

http.verify_mode = OpenSSL::SSL::VERIFY_NONE

This effectively disables SSL checks and is not something anyone should be recommending….ever.

Discussion (0)

Subscribe

Read next

Ruby on Rails GitHub Action Workflow

Harish Babu - Apr 23

Rails Spotify Project

Bryanjazo - Apr 24

Implementing Two-factor Authentication with Flask, PyOTP, and Fauna

LordGhostX - Apr 23

TLDR - Basic search field with Ruby on Rails

Yaroslav Shmarov - Apr 23

Scott Watermasysk

Boostrapped Founder. In to Ruby, Rails, JavaScript, VSCode, React, Tailwind, and more.

Work

Founder at KickoffLabs
Location

New Jersey
Joined

Jan 28, 2019

Markdown Views ❤️

#rails #markdown #ruby

Active Decorator

Table Print Gem