[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
bug#16784: 24.3; Problems opening NNTP connection: failing starttls beca
From: |
Lars Magne Ingebrigtsen |
Subject: |
bug#16784: 24.3; Problems opening NNTP connection: failing starttls because of a non-verified certificate |
Date: |
Thu, 20 Mar 2014 15:58:02 +0100 |
User-agent: |
Gnus/5.13001 (Ma Gnus v0.10) Emacs/24.3.50 (gnu/linux) |
Ted Zlatanov <tzz@lifelogs.com> writes:
> SB> I would like one of the following solutions:
> SB> 1. The possibility to switch off the attempted upgrade to STARTTLS for
> SB> NNTP connections
>
> I think Lars has to give an opinion here.
I think we should always do encryption, even though we can't do validation.
> So basically customize that variable and add :trustfiles and :hostname
> for the respective verifications, or nil to disable them.
When doing opportunistic upgrades (where the user hasn't asked for the
connection to be encrypted), bothering the user with warnings about not
being able to establish the identity of the server doesn't make much
sense.
--
(domestic pets only, the antidote for overdose, milk.)
bloggy blog: http://lars.ingebrigtsen.no