Re: [exim-dev] tls_verify_certificates forced failure vs. em…

Startseite
Diese Nachricht ist Teil des folgenden Threads:
MDer komplette Thread sortiert nach Datum
MHeiko Schlittermann am <-
 
Nachricht löschen
Nachricht beantworten
Autor: Jeremy Harris
Datum:  
To: exim-dev
Neue Treads: [exim-dev] Should we always load the default trust store? (was: tls_verify_certificates forced failure vs. empty) string
Betreff: Re: [exim-dev] tls_verify_certificates forced failure vs. empty string
On 25/11/14 07:06, Heiko Schlittermann wrote:
> (Originally I wanted to complain about loading the
> default CAs, but now it's documented at least.)

As you probably also saw, I added in 4.next a way of
saying "just use the system default bundle". I've
not changed the current behaviour with OpenSSL on
loading both the default and the specified CAs though;
do you think there is a need for that?

The OpenSSL and GnuTLS implementations behave differently
in this respect.
--
Cheers,
Jeremy


Diese Nachricht wurde auf der folgenden Mailing-List gepostet:
Exim-dev
Mailing-List-Info | Nachrichten um die Zeit		<-[exim-dev] [Bug 1551] typo in context of tls_sni[exim-dev] [Bug 1552] New: lack of correct truncated string length storage in spam address->
Tahini and Hummus and Cumin Development Archives administriert von cumin AdminsLurker (Version 2.3)