replace common name of cert with target host

This reduces the error message an mstsc client sees from two to one. before: - The server name on the certificate is incorrect - The certificate is not from a trusted certifying authority after: - The certificate is not from a trusted certifying authority
GoSecure · Dec 21, 2022 · bfb29fe · bfb29fe
1 parent 52a8fe4
commit bfb29fe
Showing 1 changed file with 3 additions and 0 deletions.
diff --git a/pyrdp/mitm/RDPMITM.py b/pyrdp/mitm/RDPMITM.py
@@ -238,6 +238,9 @@ def doClientTls(self):
             # Wait for server certificate
             reactor.callLater(1, self.doClientTls)
 
+        if cert.get_subject().commonName != self.config.targetHost:
+            cert.get_subject().commonName = self.config.targetHost
+
         # Clone certificate if necessary.
         if self.certs:
             privKey, certFile = self.certs.lookup(cert)