Re: [exim] outgoing TLS - verifying certificates

Top Pagina
Delete this message
Reply to this message
Auteur: Wolfgang Breyha
Datum:  
Aan: exim-users
Onderwerp: Re: [exim] outgoing TLS - verifying certificates
On 2013-07-22 18:07, Phil Pennock wrote:
> Yes, especially since Exim is only validating the certificate chain, not
> the claimed hostname.


Both tls-gnutls.c and tls-openssl.c look well prepared looking at
tls_client_start(), right? openssl needs a TRUE as last parameter for
setup_certs() and gnutls needs "some" more if statements to implement a
try_verify. Should I try my luck?

Greetings, Wolfgang
--
Wolfgang Breyha <wbreyha@???> | http://www.blafasel.at/
Vienna University Computer Center | Austria