On Mon, Sep 29, 2008 at 04:56:48PM -0700, Mark Doliner wrote: > 2008/9/29 Ethan Blanton <[EMAIL PROTECTED]>: > > Mark Doliner spake unto us the following wisdom: > >> And so I'd like to point out that this decision negatively impacts the > >> virtual hosting provided by Google's Apps. For example, when I login > >> my [EMAIL PROTECTED] JID using Pidgin, it looks up the srv record, > >> connects to talk.google.com, then presents me with a certificate > >> mismatch warning and asks whether I want to accept or reject the > >> certificate. > >> > >> And I just realized that maybe we should continue setting the connect > >> server to talk.google.com when users create Google Talk accounts > >> within Pidgin (I believe Ethan changed this a few days ago). > > > > I changed it yesterday; the reason for this is that it breaks SSL > > certificate verification for those with gmail.com Google Talk > > accounts. Why do you think it should be re-enabled? > > Because without it Google Apps accounts show the certificate mismatch > warning. This is, uh, comical. > > When I login to talk.google.com as [EMAIL PROTECTED] the certificate > presented is for talk.google.com. > When I login to talk.google.com as [EMAIL PROTECTED] the > certificate presented is for gmail.com. > When I login to talk.google.com as [EMAIL PROTECTED] the > certificate presented is for googlemail.com. > > Maybe we should do this: > Only set the connect server to talk.google.com when a Google Talk > account is created that is not @gmail.com or @googlemail.com
I manage a google apps account, and I would presume, like me, those who do this have access to update their records like this (for example if I manage example.com). So do you still experience these issues when you have the following in your DNS, and when pidgin follows these accordingly? Or perhaps I'm missing the point of this discussion: $ host -t A example.com example.com has address 72.14.207.121 example.com has address 66.249.81.121 example.com has address 64.233.179.121 $ host -t TXT example.com example.com descriptive text "v=spf1 include:aspmx.googlemail.com ~all" $ host -t CNAME calendar.example.com calendar.example.com is an alias for ghs.google.com. $ host -t CNAME docs.example.com docs.example.com is an alias for ghs.google.com. $ host -t CNAME mail.example.com mail.example.com is an alias for ghs.google.com. $ host -t CNAME start.example.com start.example.com is an alias for ghs.google.com. $ host -t CNAME www.example.com www.example.com is an alias for ghs.google.com. $ host -t MX example.com example.com mail is handled by 20 ALT1.ASPMX.L.GOOGLE.COM. example.com mail is handled by 30 ALT2.ASPMX.L.GOOGLE.COM. example.com mail is handled by 40 ASPMX2.GOOGLEMAIL.COM. example.com mail is handled by 50 ASPMX3.GOOGLEMAIL.COM. example.com mail is handled by 60 ASPMX4.GOOGLEMAIL.COM. example.com mail is handled by 70 ASPMX5.GOOGLEMAIL.COM. example.com mail is handled by 10 ASPMX.L.GOOGLE.COM. $ host -t SRV _jabber._tcp.example.com _jabber._tcp.example.com has SRV record 5 0 5269 xmpp-server.l.google.com. _jabber._tcp.example.com has SRV record 20 0 5269 xmpp-server1.l.google.com. _jabber._tcp.example.com has SRV record 20 0 5269 xmpp-server2.l.google.com. _jabber._tcp.example.com has SRV record 20 0 5269 xmpp-server3.l.google.com. _jabber._tcp.example.com has SRV record 20 0 5269 xmpp-server4.l.google.com. $ host -t SRV _jabber-client._tcp.example.com _jabber-client._tcp.example.com has SRV record 5 0 5222 talk.l.google.com. _jabber-client._tcp.example.com has SRV record 20 0 5222 talk1.l.google.com. _jabber-client._tcp.example.com has SRV record 20 0 5222 talk2.l.google.com. _jabber-client._tcp.example.com has SRV record 20 0 5222 talk3.l.google.com. _jabber-client._tcp.example.com has SRV record 20 0 5222 talk4.l.google.com. $ host -t SRV _xmpp-client._tcp.example.com _xmpp-client._tcp.example.com has SRV record 5 0 5222 talk.l.google.com. _xmpp-client._tcp.example.com has SRV record 20 0 5222 talk1.l.google.com. _xmpp-client._tcp.example.com has SRV record 20 0 5222 talk2.l.google.com. _xmpp-client._tcp.example.com has SRV record 20 0 5222 talk3.l.google.com. _xmpp-client._tcp.example.com has SRV record 20 0 5222 talk4.l.google.com. $ host -t SRV _xmpp-server._tcp.example.com _xmpp-server._tcp.example.com has SRV record 5 0 5269 xmpp-server.l.google.com. _xmpp-server._tcp.example.com has SRV record 20 0 5269 xmpp-server1.l.google.com. _xmpp-server._tcp.example.com has SRV record 20 0 5269 xmpp-server2.l.google.com. _xmpp-server._tcp.example.com has SRV record 20 0 5269 xmpp-server3.l.google.com. _xmpp-server._tcp.example.com has SRV record 20 0 5269 xmpp-server4.l.google.com. _______________________________________________ Support mailing list Support@pidgin.im http://pidgin.im/cgi-bin/mailman/listinfo/support
