When querying the Red Hat Security API with HTTPS, older Enterprise Linux hosts will have difficulty making a connection due to outdated CA information. Right now, I've hardcoded the query to be False. In any case, not verifying SSL is bad but it's a small risk.
kevensen
commented
7 years ago
When querying the Red Hat Security API with HTTPS, older Enterprise Linux hosts will have difficulty making a connection due to outdated CA information. Right now, I've hardcoded the query to be False. In any case, not verifying SSL is bad but it's a small risk.