Public bug reported: Hi,
every time I fetch transactions from my banks using Gnucash, it asks me again whether the bank's certificate is valid (perhaps even multiple times, at least initially). This encourages a habit of clicking yes on anything, rather than re-checking the certificate. Security best practises will differ. Instead, I would expect gnucash to ask once and then store that certificate forever. Or even verify the certificate all by itself -- the same way firefox doesn't show any certificate popups on https:// sites. This problem occurs with three different large banks, all of them using Aqbanking and either version of HBCI. This might be a regression of a bug fixed earlier because these reports from 2009 experience the same problem: http://lists.gnucash.org/pipermail/gnucash-de/2009-June/006870.html https://lists.gnucash.org/pipermail/gnucash-de/2010-January/007190.html ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: gnucash 1:2.6.1-2 ProcVersionSignature: Ubuntu 3.13.0-46.77-generic 3.13.11-ckt15 Uname: Linux 3.13.0-46-generic i686 ApportVersion: 2.14.1-0ubuntu3.6 Architecture: i386 CurrentDesktop: Unity Date: Mon Mar 9 14:18:50 2015 InstallationDate: Installed on 2014-08-08 (212 days ago) InstallationMedia: Ubuntu 14.04 LTS "Trusty Tahr" - Release i386 (20140417) SourcePackage: gnucash UpgradeStatus: No upgrade log present (probably fresh install) ** Affects: gnucash (Ubuntu) Importance: Undecided Status: New ** Tags: apport-bug i386 trusty -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1429858 Title: encourages poor security habits instead of storing the HBCI certificate To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/gnucash/+bug/1429858/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
