reverting recent SSL-related patches

Eygene Ryabinkin rea at
Mon Jan 12 16:38:08 GMT 2015

Mon, Jan 12, 2015 at 05:11:39PM +0100, Nicolas Sebrecht wrote:
> On Mon, Jan 12, 2015 at 04:56:19PM +0100, Nicolas Sebrecht wrote:
> > I'm not convinced because it fails at the main purpose of having
> > defaults: having to enable defaults make them options, not a default.
> Hum, another good solution is to revert the default-CA patches and add
> the OS-specific paths as comments to offlineimap.conf: no regression, no
> complexity added to the code or assumptions to what the users did or not
> while setting up authentication.

The primary reason to have default locations in-code is that this way
they will have more chances to be used (e.g. addition of a distro
won't require users to crawl over default configuration file and to
modify their config; changes or additions of another probable locations
will have the same property).

But for the past 2 hours I am tasting the idea of having no default
paths applied to sslcacertfile, but rather to have OS-DEFAULT value
that will mean "use OS defaults if you can".  It is also explicit
and should introduce no regressions (code or mental ones).

More information about the OfflineIMAP-project mailing list