[Interest] HTTPS with Qt
Thiago Macieira
thiago.macieira at intel.com
Thu Oct 6 17:24:22 CEST 2016
On quinta-feira, 6 de outubro de 2016 16:10:10 CEST Konrad Rosenbaum wrote:
> Handle the sslErrors signal of QNAM and check that the error you get is
> for the exact root cert that you want.
Don't use ignoreSslErrors. There's a good chance you'll get it wrong and thus
introduce a security hole.
> Install the root cert into Qt before calling QNAM by using
> QSslSocket::setDefaultCaCertificate.
This is fine.
It's also fine to set it on the specific QNetworkRequest via setSslConfiguration.
With that, you can also set it to be only your CA, so that it wouldn't accept
a third party.
--
Thiago Macieira - thiago.macieira (AT) intel.com
Software Architect - Intel Open Source Technology Center
More information about the Interest
mailing list