Fix not to limit to valid SSL certificate, as self-signed is also valid and safe enough

forgot.cgi

@@ -15,9 +15,6 @@ $gconfig{'forgot_pass'} || &error($text{'forgot_ecannot'});
 my $timeout = $gconfig{'passreset_timeout'} || 15;
 $remote_user && &error($text{'forgot_elogin'});
 $ENV{'HTTPS'} eq 'ON' || &error($text{'forgot_essl'});
-$ENV{'SSL_HOST_CERT'} == 1 ||
-	&error(&text('forgot_esslhost',
- 		     &html_escape($ENV{'SSL_HOST'} || $ENV{'HTTP_HOST'})));
 
 # Check that the random ID is valid
 $in{'id'} =~ /^[a-f0-9]+$/i || &error($text{'forgot_eid'});

forgot_form.cgi

@@ -14,9 +14,6 @@ $trust_unknown_referers = 1;
 $gconfig{'forgot_pass'} || &error($text{'forgot_ecannot'});
 $remote_user && &error($text{'forgot_elogin'});
 $ENV{'HTTPS'} eq 'ON' || &error($text{'forgot_essl'});
-$ENV{'SSL_HOST_CERT'} == 1 ||
-	&error(&text('forgot_esslhost',
- 		     &html_escape($ENV{'SSL_HOST'} || $ENV{'HTTP_HOST'})));
 
 &ui_print_header(undef, $text{'forgot_title'}, "", undef, undef, 1, 1);
 

forgot_send.cgi

@@ -13,9 +13,6 @@ $no_acl_check++;
 $gconfig{'forgot_pass'} || &error($text{'forgot_ecannot'});
 $remote_user && &error($text{'forgot_elogin'});
 $ENV{'HTTPS'} eq 'ON' || &error($text{'forgot_essl'});
-$ENV{'SSL_HOST_CERT'} == 1 ||
-	&error(&text('forgot_esslhost',
- 		     &html_escape($ENV{'SSL_HOST'} || $ENV{'HTTP_HOST'})));
 
 # Lookup the Webmin user
 &foreign_require("acl");

lang/en

@@ -184,7 +184,6 @@ forgot_elogin=Forgotten password pages cannot be used when you are already logge
 forgot_erate=Too many password reset attempts for $1! Please try again later.
 forgot_eremote=Webmin server on this system is not running or is not configured to allow forgotten password recovery.
 forgot_essl=Forgotten password recovery can only be used over an SSL connection
-forgot_esslhost=Forgotten password recovery cannot be used with invalid SSL hostname $1
 
 pam_header=Login to Webmin
 pam_mesg=You must respond to the question below to login to Webmin server on $1.