#3755: imap: accumulates the same certificate over and over in
~/.mutt/certificates but doesn't recognize at startup
---------------------+---------------------
Reporter: ecloud | Owner: brendan
Type: defect | Status: closed
Priority: major | Milestone:
Component: IMAP | Version: 1.5.23
Resolution: fixed | Keywords:
---------------------+---------------------
Changes (by kevin8t8):
* status: new => closed
* resolution: => fixed
Comment:
I had to trace back through again, but it turns out GnuTLS doesn't have
the same issue OpenSSL had.
It adds hostname and fingerprint entries into the $certificate_file. So
accepting (a)lways for a hostname mismatch with GnuTLS should not prompt
again.
With OpenSSL, we ended up disabling the (a)lways option for hostname
mismatches. (And would suggest using an account hook to disable
$ssl_verify_host for just that connection if this is otherwise
unsolvable.)
In either case, you shouldn't have the same cert being appended again and
again to your cert file as of the 1.9.0 release.
--
Ticket URL: <https://dev.mutt.org/trac/ticket/3755#comment:3>
Mutt <http://www.mutt.org/>
The Mutt mail user agent
