Closed lrstanley closed 6 years ago
When I never think about that to be honest, but that could be interesting. Only issue the syslog lib that we use do not support Insecure ssl for now.
So not just easy as just adding a flag.
https://godoc.org/github.com/RackSec/srslog#DialWithTLSConfig (if this is the lib in mention)
Looks like it supports passing in a TLS config, which you can then pass in an optional InsecureSkipVerify
field.
I'd submit PR's to fix myself but I don't believe my company has setup any legality rules in regards to public contributions yet :smile:
@lrstanley lol ! I will fix it. It's just 5am in Japan so I will fix it soon :) Guess I need some sleep, I miss the DialWithTLSConfig
function.
Flag added in the 4.1.0
release.
Seems when using
--skip-ssl-validation
, this likely only applies to wss connections and similar, not syslog. For self signed certs on the syslog server, (I think) the only option to connect is to directly specify the pem, which is a bit irritating when testing.E.g:
Should a
--skip-tls-validation-syslog
or similar be added, specifically for syslog?