#3916: Mutt 1.8: TOFU approach bails out on first fail or reject, not offering
higher links of the cert' chain
--------------------------+----------------------
Reporter: kratem32 | Owner: mutt-dev
Type: enhancement | Status: new
Priority: minor | Milestone: 1.8
Component: crypto | Version:
Resolution: | Keywords: tofu
--------------------------+----------------------
Comment (by kevin8t8):
Thanks for the feedback, kratem32. After thinking it over, I like the
idea of the quadoption better: I don't think we should reveal the (s)kip
choice unless someone has tweeked the $ssl_verify_partial_chains option.
* "yes" will mean nodes are automatically skipped.
* "ask-yes" or "ask-no" will reveal the (s)kip prompt. (I know this is a
minor abuse of the quadoption concept)
* "no" will be like the 1.8.0 release behavior.
I've finished this version of the patch up, but just need to test it and
will post it here a bit later today. I'd appreciate any feedback.
--
Ticket URL: <https://dev.mutt.org/trac/ticket/3916#comment:41>
Mutt <http://www.mutt.org/>
The Mutt mail user agent
