Custom dynamic dns update with https?
-
Hello,
I wanted to try out the new "custom" dynamic dns update, using a https URL to a server which supports this.
However, it doesn't seem to update the record, only when I change the URL to http. Is https update supposed
to work?The system log shows:
php: /services_dyndns_edit.php: Curl error occurred: error setting certificate verify locations: CAfile: /usr/local/share/certs/ca-root-nss.crt CApath: noneCheers,
Markus -
I didn't see anything obvious in the code that would make it fail. It's setting the curl options to disable peer verification which usually will prevent that sort of error.
-
Well, whatever the reason, it didn't work. After doing
pkg_add -r ca_root_nss
it works just fine. I suggest including this package by default for 2.1
Cheers,
Markus -
Yeah that should be safe to include, I went ahead and added it
https://github.com/bsdperimeter/pfsense-tools/commit/17ee4442b8323420fec46343c080f1a3d0cc2fa4
I imagine it was only a matter of time before we encountered a cert from a CA that we need that for.
-
Thanks!
