Re: [Mutt] #3087: No server hostname validation in SSL certificate

To: mutt0708@xxxxxxxxxxxx, pdmef@xxxxxxx
Subject: Re: [Mutt] #3087: No server hostname validation in SSL certificate
From: Mutt <fleas@xxxxxxxx>
Date: Fri, 11 Jul 2008 06:52:15 -0000
Cc: mutt-dev@xxxxxxxx
In-reply-to: <041.5f29cc9ccef2bf90b608bd24734b6365@xxxxxxxx>
List-post: <mailto:mutt-dev@mutt.org>
List-unsubscribe: send mail to majordomo@mutt.org, body only "unsubscribe mutt-dev"
Mail-followup-to: fleas@xxxxxxxx
References: <041.5f29cc9ccef2bf90b608bd24734b6365@xxxxxxxx>
Reply-to: fleas@xxxxxxxx
Sender: owner-mutt-dev@xxxxxxxx

#3087: No server hostname validation in SSL certificate processing

Changes (by pdmef):

  * status:  new => closed
  * resolution:  => fixed

Comment:

 (In [934a802dff7f]) Verify hostname in (Open)SSL certificate validation

 This is based on the patch by gkloepfer attached to #3087 but passes the
 proper connection as argument (avoiding adding hostname to struct
 sslsockdata) and validates the hostname even in case OpenSSL cannot find
 the local issuer certificate.  GnuTLS already supports hostname
 checking. Closes #3087.

-- 
Ticket URL: <http://dev.mutt.org/trac/ticket/3087#comment:3>

References:
- [Mutt] #3087: No server hostname validation in SSL certificate processing
  - From: Mutt

Prev by Date: Re: your mail
Next by Date: mutt: 3 new changesets
Previous by thread: Re: [Mutt] #3087: No server hostname validation in SSL certificate
Next by thread: Re: [Mutt] #3087: No server hostname validation in SSL certificate
Index(es):
- Date
- Thread