[Users] [Bug 2738] Erroneous rotation of SSL certificates

Jerry jerry at seibercom.net
Fri Sep 28 14:36:04 CEST 2012

On Fri, 28 Sep 2012 03:15:09 +0200 (CEST)
noreply at thewildbeast.co.uk articulated:

> http://www.thewildbeast.co.uk/claws-mail/bugzilla/show_bug.cgi?id=2738
> --- Comment #12 from ratinox  2012-09-28 03:15:09 ---
> > I have done so.  That's the core of the problem, and why it makes
> > Claws behavior look stupid.  Accept means accept - don't ask me
> > again.
> The SSL specifications stipulate that a socket (combination of IP
> address and port) have exactly one valid SSL certificate associated
> with it.
> Google's procedure for distributing new SSL certificates results in
> sockets presenting multiple different SSL certificates.
> Google is wrong. Claws Mail is correct in barking about it. Even
> though it may look stupid to you it is the correct behavior according
> to the SSL specifications.

Since its inception, Google's mail servers have been non-conforming.
Interestingly enough, if this was Microsoft and not Google the
open-source community would be up in arms. Since it is Google they
simply choose to blindly accept such behavior.

Jerry ♔

Disclaimer: off-list followups get on-list replies or get ignored.
Please do not ignore the Reply-To header.
My wife likes to talk on the phone during sex. She called me from
Chicago last night

More information about the Users mailing list