[PATCH] Re: Implement SSL certificate checking

Sebastian Spaeth Sebastian at SSpaeth.de
Wed Dec 15 02:16:32 GMT 2010


On Tue, 14 Dec 2010 21:34:54 +0100, Johannes Stezenbach <js at sig21.net> wrote:
> FWIW, certificate validation is sadly insufficient, that's why
> I'm advocating the ssh-style fingerprint check.
> It's the same with webbrowsers, you can read a bit
> about it here:
> http://patrol.psyced.org/

Well, that doesn't apply here, as we currently need to specify a
specific certificate file that the server is checked against. So it is a
quite different situation from web browsers.

That having said, I would love to get that certificate from the server
and just have it be remembered, like mutt does. I have no clue how that
would be done though.

Sebastian




More information about the OfflineIMAP-project mailing list