[Users] (Solved) Not downloading from Gmail
ricardo at mones.org
Tue Apr 4 10:11:49 CEST 2017
On Mon, Apr 03, 2017 at 08:02:36AM +0200, Andrej Kacian wrote:
> On Mon, 3 Apr 2017 13:32:42 +1000
> blind Pete <peter_s_d at fastmail.com.au> wrote:
> > Is there any reason that CM can not remember that multiple certificates
> > have been accepted, or is there some reason that accepting a new one
> > must cause the previous one to be discarded?
> No, no reason. You can even enable it with "unsafe_ssl_certs" hidden
> preference (see user manual). It's just that it's usually a bad idea to
> have it enabled by default, since sane providers stick to the good old
> "one service, one certificate" rule.
Since the domains causing most of the problems with this are usually
well known, maybe a better experience without accepting all those unsafe
certs could be turning that boolean preference into a list of regexp and
only skipping this check to the domains matching any of the regexp in
That way known annoyers can be added to the list, and certs from others
would still require a manual waiver. You could even have the original
unsafe_ssl_certs behaviour using the *.* regexp.
What do you think?
RTFM - "Read The Manual" (The 'F' is silent). Usually a very good
idea. Bjarne Stroustrup
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 819 bytes
Desc: Digital signature
More information about the Users