[Users] [Bug 3660] SSL Cert change shown on previously accepted certificates.
blind Pete
peter_s_d at fastmail.com.au
Thu Jul 28 12:09:19 CEST 2016
On Thu, 14 Jul 2016 08:03:06 +0100
Paul <claws at thewildbeast.co.uk> wrote:
> On Thu, 14 Jul 2016 14:05:22 +1000
> blind Pete <peter_s_d at fastmail.com.au> wrote:
>
> > Are you referring to,
> >
> > skip_ssl_cert_check
> >
> > Disables the verification of SSL certificates when set
> > to '1'. Default value is '0'.
> >
> > or to,
> >
> > unsafe_ssl_certs
> >
> > Allows Claws Mail to remember multiple SSL certificates
> > for a given server/port when set to '1'. This is disabled
> > by default ('0').
>
> Clearly it was the latter which was being referred to - it is named
> explicitly.
>
>
> > The name "unsafe_ssl_certs" suggests that it refers to SSL certs for
> > wildcarded URLs (problem one), but the text describes problem two,
> > which in my limited understanding is a non-problem.
>
> As the name alone cannot give a full explanation, the text is added
> to describe the function of the option. Whatever an option name
> leads you to believe, there is no need to doubt the accompanying
> text.
>
> with regards
>
> Paul
I did not express myself clearly.
Case one; one certificate, multiple URLs. That looks dangerous to me.
No explanation requested.
Case two; one URL, multiple certificates. Is that really dangerous?
How?
Can you handle both cases with one variable?
Also, I've had a peek in ~/.claws-mail/certs and am a bit lost on port
number 465, Wikipedia says that it was obsoleted last century.
<https://en.wikipedia.org/wiki/SMTPS> Should I change references from
465 to 587 and see what breaks?
--
testing
bP
More information about the Users
mailing list