- Joined
- Feb 27, 2003
- Messages
- 8,139
With php 5.6 being more strict about having valid certificates, it's more important to have control over what you want php sockets to do if a certificate is self-signed, or uses a hostname that doesn't match the certificate.
To keep things simple, I've converted the whole httpsocket class over to use curl, which allows us to very easily disable any valid certificate checks (or turn them back on), or force ciphers, or anything like that which curl can do natively.
The script is somewhat new, so I won't make it the default quite yet, but for anyone having related issues, the new script is here:
http://files1.directadmin.com/services/custombuild/all/httpsocket/httpsocket.php.3.0.0
The main trigger for the change was the RoundCube password plugin which wasn't able to connect to DA unless the API hostname in the roundcube configs was set, and the cert for 2222 was valid for that hostname.
Related guide, where option B will be the simplest solution:
https://help.directadmin.com/item.php?id=644
John
To keep things simple, I've converted the whole httpsocket class over to use curl, which allows us to very easily disable any valid certificate checks (or turn them back on), or force ciphers, or anything like that which curl can do natively.
The script is somewhat new, so I won't make it the default quite yet, but for anyone having related issues, the new script is here:
http://files1.directadmin.com/services/custombuild/all/httpsocket/httpsocket.php.3.0.0
The main trigger for the change was the RoundCube password plugin which wasn't able to connect to DA unless the API hostname in the roundcube configs was set, and the cert for 2222 was valid for that hostname.
Related guide, where option B will be the simplest solution:
https://help.directadmin.com/item.php?id=644
John