From: Fabian Keil <fk@fabiankeil.de>
Date: Sat, 19 Nov 2022 09:16:34 +0000 (+0100)
Subject: Add #201: Add an action to change the trusted-cas-file for a section
X-Git-Tag: v_3_0_34~48
X-Git-Url: http://www.privoxy.org/gitweb/misc.html?a=commitdiff_plain;h=589108391b9f2e5903ad90472f37f8965311c853;p=privoxy.git

Add #201: Add an action to change the trusted-cas-file for a section
---

diff --git a/TODO b/TODO
index 11b4d806..b2a68a9f 100644
--- a/TODO
+++ b/TODO
@@ -532,6 +532,13 @@ https://www.privoxy.org/donate
 200) Add a config directive that causes Privoxy to remove all
      host certificates before exiting.
 
+201) Add an action to change the trusted-cas-file for a section.
+     This should be useful in countries where a person-in-the-middle
+     attack is known to happen on some domains but should not be tolerated
+     on others. It would also allow to limit the accepted CA certificates
+     for given domains instead of accepting all that are specified with
+     the trusted-cas-file directive.
+
 ##########################################################################
 
 Hosting wish list (relevant for #53)