Allows user to skip TLS certificate checks when connecting to trackers.
Rationale:
When seeding exclusively to private trackers, trust is generally higher than with public trackers. LetsEncrypt certificates expire every three months and require operators to intervene. This disrupts the torrent infrastructure unnecessarily.
Proposal:
Add new verify_certificates switch to the tracker-specific configuration, which defaults to true, but if set to false, configures SStream to use a rustls verifier that skips the server authentication.
19h
commented
2 years ago
Allows user to skip TLS certificate checks when connecting to trackers.
Rationale:
When seeding exclusively to private trackers, trust is generally higher than with public trackers. LetsEncrypt certificates expire every three months and require operators to intervene. This disrupts the torrent infrastructure unnecessarily.
Proposal:
Add new
verify_certificatesswitch to the tracker-specific configuration, which defaults to true, but if set to false, configures SStream to use a rustls verifier that skips the server authentication.