Re: [exim] outgoing TLS - verifying certificates

Page principale
Supprimer ce message
Répondre à ce message
Auteur: Jeremy Harris
Date:  
À: exim-users
CC: jgh
Sujet: Re: [exim] outgoing TLS - verifying certificates
On 22/07/13 19:15, Wolfgang Breyha wrote:
> On 2013-07-22 18:07, Phil Pennock wrote:
>> Yes, especially since Exim is only validating the certificate chain, not
>> the claimed hostname.
>
> Both tls-gnutls.c and tls-openssl.c look well prepared looking at
> tls_client_start(), right? openssl needs a TRUE as last parameter for
> setup_certs() and gnutls needs "some" more if statements to implement a
> try_verify. Should I try my luck?


Yes!   More developers can only be a good thing.
-- 
Cheers,
     Jeremy