Here is a patch to move all the SSL calls to one file. This makes it
much easier to use a different SSL library. You would just need to
create replacement ssl.c and ssl.h files. Sometimes you don't have or
don't want to use openssl. This is not necessarily a patch for win32.
This adds 2 new files. ssl.c and ssl.h. I included them plus a diff
for the other files.
Another thing I added to this patch is 2 function that verify the
signature of the server. Now it just returns True meaning that the
signature is ok but once the functions are filled in, it will prevent
ssl_certs_ok - for verifying the win2k and win2003 servers in app mode.
ssl_sig_ok - for verifying the RDP4 signatures. XP uses this method still.
As I said, these functions just return True for now.