An integration test wouldn't catch this one. You need a specific malicious SSL server (presents a valid certificate, uses ephemeral mode, does not present a valid signature proving that it owns the private key). The…
It's clearly still a work in progress and incomplete. Wait, I'm sure it'll be extended.
An integration test wouldn't catch this one. You need a specific malicious SSL server (presents a valid certificate, uses ephemeral mode, does not present a valid signature proving that it owns the private key). The…
It's clearly still a work in progress and incomplete. Wait, I'm sure it'll be extended.