Make check for 'X-SSL-Client-Verify' header stricter

2026-05-07 15:50:27 +01:00 · 2026-04-14 16:19:22 -07:00
parent 7183af2fdd
commit ba336c297b
1 changed files with 1 additions and 1 deletions
--- a/miniserv.pl
+++ b/miniserv.pl
@@ -1722,7 +1722,7 @@ if ($header{'user-agent'} =~ /webmin/i ||
 my $trust_ssl = $config{'trust_real_ip'} && !$config{'no_trust_ssl'};
 if ($use_ssl && $verified_client ||
    $trust_ssl && $header{'x-ssl-client-dn'} &&
-                  $header{'x-ssl-client-verifiy'} !~ /^(failed|none)/i) {
+                  $header{'x-ssl-client-verify'} =~ /^success/i) {
 	if ($use_ssl && $verified_client) {
 		$peername = Net::SSLeay::X509_NAME_oneline(
 				Net::SSLeay::X509_get_subject_name(