[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [bug-mailutils] [PATCH] starttls fix
|
From: |
Simon Josefsson |
|
Subject: |
Re: [bug-mailutils] [PATCH] starttls fix |
|
Date: |
Sun, 19 Jan 2003 11:46:23 +0100 |
|
User-agent: |
Gnus/5.090013 (Oort Gnus v0.13) Emacs/21.3.50 (i686-pc-linux-gnu) |
Simon Josefsson <address@hidden> writes:
> Btw, why do you enforce chmod 0600 on the certificate?
>
> Jan 19 11:21:13 latte gnu-imap4d[11545]: Wrong permissions on
> /home/jas/certs/sj.cert. Set 0600.
>
> The certificate is generally not a secret.
Btw, it would be useful if STARTTLS was enabled even if the CA cert
was not specified. Clients may trust a server cert directly.
Even further; enabling starttls when there isn't a server cert at all
is useful, as it allows clients to protect themselves against passive
man-in-the-middles.
- [bug-mailutils] [PATCH] starttls fix, Simon Josefsson, 2003/01/19
- Re: [bug-mailutils] [PATCH] starttls fix,
Simon Josefsson <=
- [bug-mailutils] Re: [PATCH] starttls fix, Wojciech Polak, 2003/01/19
- [bug-mailutils] Re: [PATCH] starttls fix, Simon Josefsson, 2003/01/19
- [bug-mailutils] Re: [PATCH] starttls fix, Wojciech Polak, 2003/01/20
- [bug-mailutils] Re: [PATCH] starttls fix, Simon Josefsson, 2003/01/20
- Re: [bug-mailutils] Re: [PATCH] starttls fix, Sergey Poznyakoff, 2003/01/20
- [bug-mailutils] Re: [PATCH] starttls fix, Wojciech Polak, 2003/01/20
- [bug-mailutils] Re: [PATCH] starttls fix, Simon Josefsson, 2003/01/20
Re: [bug-mailutils] [PATCH] starttls fix, Sergey Poznyakoff, 2003/01/19