Remove turning cert validation off from faq

author: Andrew Morgan <andrew@amorgan.xyz> 2019-04-03 10:50:37 +0100
committer: Andrew Morgan <andrew@amorgan.xyz> 2019-04-03 10:50:37 +0100
commit: 983474d2507f4b5221e16fa8105ea3dcbe456687 (patch)
tree: 84da9eb860e584685215cf1c2ed53f7329eb9641 /docs/MSC1711_certificates_FAQ.md
parent: regen sample config (diff)
download: synapse-983474d2507f4b5221e16fa8105ea3dcbe456687.tar.xz
1 files changed, 0 insertions, 22 deletions
diff --git a/docs/MSC1711_certificates_FAQ.md b/docs/MSC1711_certificates_FAQ.md
index 84bc580931..8549f126a4 100644
--- a/docs/MSC1711_certificates_FAQ.md
+++ b/docs/MSC1711_certificates_FAQ.md
@@ -177,28 +177,6 @@ You can do this with a `.well-known` file as follows:
        on `customer.example.net:8000` it correctly handles HTTP requests with
        Host header set to `customer.example.net:8000`.
 
-## Turning off certificate validation
-
-It is possible to turn off certificate validation for remote servers, but
-note that this must be explicitly enabled and is thus only suitable for
-private federations. This will only disable TLS certificate validation on
-federation endpoints; other requests made to recaptcha, identity services
-etc. will be unaffected.
-
-```
-federation_verify_certificates = false
-```
-
-You can also only disable certificate validation for a specific set of
-homeservers:
-
-```
-federation_certificate_verification_whitelist:
-  - subdomain.my-server.org
-  - example.org
-  - 1.2.3.4
-```
-
 ## Specifying your own Certificate Authorities
 
 If you would like to specify your own list of trusted Certificate
author	Andrew Morgan <andrew@amorgan.xyz>	2019-04-03 10:50:37 +0100
committer	Andrew Morgan <andrew@amorgan.xyz>	2019-04-03 10:50:37 +0100
commit	983474d2507f4b5221e16fa8105ea3dcbe456687 (patch)
tree	84da9eb860e584685215cf1c2ed53f7329eb9641 /docs/MSC1711_certificates_FAQ.md
parent	regen sample config (diff)
download	synapse-983474d2507f4b5221e16fa8105ea3dcbe456687.tar.xz