Browse code

Erkenne LE-Zertifikate nicht am CN sondern nur an der Chain-ID

Bernd Wurst authored on01/12/2015 11:37:52
Showing1 changed files
... ...
@@ -57,9 +57,7 @@ function cert_details($id)
57 57
 function cert_is_letsencrypt($id)
58 58
 {
59 59
   $details = cert_details($id);
60
-  if (strstr($details['subject'], 'happy hacker fake CA') ||
61
-      strstr($details['subject'], "Let's Encrypt Authority X1") ||
62
-      $details['chain'] == 18) {
60
+  if ($details['chain'] == config('letsencrypt_chain')) {
63 61
     return true;
64 62
   }
65 63
   return false;