3 枯れ果てた名無し@転載禁止 2024/11/03 (日) 09:36:19.418 ID:6QQyt4q5m
興味深いのはこれが恐らく当初意図した設計であるということ
Ignoring SSL errors was introduced ~14 years ago with commit 9824d86
I presume that it was a quick'n'dirty way to get SSL going which persisted to this day. It's also possible that back in the day Qt4 (?) didn't support autoloading ca root certificates from the OS's store.
Don't ignore SSL errors #21364
https://github.com/qbittorrent/qBittorrent/pull/21364
RCE Vulnerability in QBittorrent
https://sharpsec.run/rce-vulnerability-in-qbittorrent/