From 623ffbb23fc4dd50010f144df55583fd56c21c43 Mon Sep 17 00:00:00 2001
From: moexiami <1927254+Xiami2012@users.noreply.github.com>
Date: Tue, 2 Apr 2024 18:34:50 +0800
Subject: [PATCH] Set most node_pref settings to indeterminate by default
 (#728)

Settings within node_pref should be established with a thorough understanding of the subscription sources' configurations.
Additionally, defaulting skip_cert_verify_flag to true exposes security risks.

Since pref.example.toml serves as the default configuration file, it is suggested to reset these settings. Also moving us toward Secure-by-Default.

Signed-off-by: moexiami <i@f2light.com>
---
 base/pref.example.toml | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/base/pref.example.toml b/base/pref.example.toml
index b78a007e5..4e0c563d4 100644
--- a/base/pref.example.toml
+++ b/base/pref.example.toml
@@ -117,10 +117,10 @@ match = '^Smart Access expire: (\d+)/(\d+)/(\d+)$'
 replace = '$1:$2:$3:0:0:0'
 
 [node_pref]
-udp_flag = true
-tcp_fast_open_flag = false
-skip_cert_verify_flag = true
-tls13_flag = false
+#udp_flag = false
+#tcp_fast_open_flag = false
+#skip_cert_verify_flag = false
+#tls13_flag = false
 
 sort_flag = false
 # Script used for sorting nodes. A "compare" function with 2 arguments which are the 2 nodes to be compared should be defined in the script. Supports inline script and script path.