Currently the ssl certificate aren't verified. In my opinion you should change this behaviour because only if the peer certificate is verified the connection can be secure. As a first step, the sslsockets verifymode should be changed to QSslSocket::VerifyPeer.
Ideally there should also be a way to specify ca certificates and fingerprints on a per server basis.
Hello,
Currently the ssl certificate aren't verified. In my opinion you should change this behaviour because only if the peer certificate is verified the connection can be secure. As a first step, the sslsockets verifymode should be changed to
QSslSocket::VerifyPeer.Ideally there should also be a way to specify ca certificates and fingerprints on a per server basis.