DEV Community

loading...

SSL::VERIFY_NONE - NEVER!

scottw profile image Scott Watermasysk Originally published at scottw.com on ・1 min read

I saw this little doozy as recommend code for (Ruby) API access:

http.verify_mode = OpenSSL::SSL::VERIFY_NONE

This effectively disables SSL checks and is not something anyone should be recommending….ever.

Discussion (0)

pic
Editor guide