Skip to content

crawler.sslTrustEveryone (collection.cfg setting)

Description

Trust all root certificates and ignore server hostname verification if true. This bypasses all certificate and server validation by the HTTPS library, so every server and certificate is trusted. It can be used to overcome problems with unresolvable external certificate chains and poor certificates for virtual hosts, but may allow server spoofing.

The default value is set to "true" to enable crawling of most HTTPS sites.

Default value

crawler.sslTrustEveryone=true

Examples

If you are crawling a site or sites which have signed valid certificates then you may wish to set this parameter to "false" to prevent server spoofing:

crawler.sslTrustEveryone=false

See also

top

Funnelback logo
v15.16.0