Re: [exim] outgoing TLS - verifying certificates

Top Page
Delete this message
Reply to this message
Author: Wolfgang Breyha
Date:  
To: exim-users
Subject: Re: [exim] outgoing TLS - verifying certificates
On 2013-07-22 18:07, Phil Pennock wrote:
> Yes, especially since Exim is only validating the certificate chain, not
> the claimed hostname.


Both tls-gnutls.c and tls-openssl.c look well prepared looking at
tls_client_start(), right? openssl needs a TRUE as last parameter for
setup_certs() and gnutls needs "some" more if statements to implement a
try_verify. Should I try my luck?

Greetings, Wolfgang
--
Wolfgang Breyha <wbreyha@???> | http://www.blafasel.at/
Vienna University Computer Center | Austria