Bug 3186 - Win32: Please include up to date SSL certificates in Claws Mail Win32
Summary: Win32: Please include up to date SSL certificates in Claws Mail Win32
Status: RESOLVED INVALID
Alias: None
Product: Claws Mail (Windows)
Classification: Unclassified
Component: default (show other bugs)
Version: 3.10.0
Hardware: All All
: P3 enhancement
Assignee: users
URL:
Depends on:
Blocks:
 
Reported: 2014-05-25 22:01 UTC by nw9165-3201
Modified: 2014-05-27 12:54 UTC (History)
0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description nw9165-3201 2014-05-25 22:01:41 UTC 
Dear Claws Mail developers,

please include up to date SSL certificates in Claws Mail Win32

It would be much appreciated.

Regards
Comment 1 Colin Leroy 2014-05-27 10:41:23 UTC 
Hi,

Aren't they rather up-to-date in 3.10.0?
Comment 2 nw9165-3201 2014-05-27 12:24:36 UTC 
(In reply to comment #1)
> Hi,
> 
> Aren't they rather up-to-date in 3.10.0?

No, they are not.

I am getting "SSL certificate is unknown" for pretty much all the servers I am trying to connect to (Yahoo! is one of them for example).

The Sylpheed Win32 version had the same issue some time ago.

But Hiroyuki Yamamoto fixed it with Sylpheed 3.4beta7 via:

> http://sylpheed.sraoss.jp/en/news.html
> 
> Win32: the included SSL certificates were updated (based on
> ca-certificates_20111211_all.deb).

Since Sylpheed 3.4beta7, the "SSL certificate is unknown" error messages are gone.

Please fix it for Claws Mail as well.

Regards
Comment 3 Colin Leroy 2014-05-27 12:32:15 UTC 
Hi,

"SSL certificate is unknown" means you never reviewed and accepted it. Just review and accept it if its status is correct.
Comment 4 nw9165-3201 2014-05-27 12:45:41 UTC 
Hello,

thanks for the fast response, but:

In Thunderbird and Sylpheed (since the included SSL certificates have been updated in 3.4beta7), for example, I do not have to review and accept SSL certificates and do not receive "SSL certificate is unknown" error messages.

Why do I have to review and accept them in Claws Mail?

And why does Claws Mail complain about unknwon SSL certificates even though they are included in Claws Mail (as you are pretending).

No offense, I just want to understand.

Regards
Comment 5 Colin Leroy 2014-05-27 12:54:06 UTC 
(In reply to comment #4)

> In Thunderbird and Sylpheed (since the included SSL certificates have been
> updated in 3.4beta7), for example, I do not have to review and accept SSL
> certificates and do not receive "SSL certificate is unknown" error messages.
> 
> Why do I have to review and accept them in Claws Mail?

Because Claws Mail presents unknown (and changed) certificates to the user, it is a feature and not something we wish to change.

Claws Mail is neither Thunderbird, Sylpheed, Geary or any other MUA than Claws Mail.

> And why does Claws Mail complain about unknwon SSL certificates even though
> they are included in Claws Mail (as you are pretending).

What is included are the root Certificate Authorities certificates, used to sign the certificates that servers present, and required for checking the validity of these certificates.

Nobody ships a database of hosts SSL certificates.

Also, please don't reopen bugs that have been closed unless you have been invited to do so.
Note You need to log in before you can comment on or make changes to this bug.