Dear Claws Mail developers, please include up to date SSL certificates in Claws Mail Win32 It would be much appreciated. Regards
Hi, Aren't they rather up-to-date in 3.10.0?
(In reply to comment #1) > Hi, > > Aren't they rather up-to-date in 3.10.0? No, they are not. I am getting "SSL certificate is unknown" for pretty much all the servers I am trying to connect to (Yahoo! is one of them for example). The Sylpheed Win32 version had the same issue some time ago. But Hiroyuki Yamamoto fixed it with Sylpheed 3.4beta7 via: > http://sylpheed.sraoss.jp/en/news.html > > Win32: the included SSL certificates were updated (based on > ca-certificates_20111211_all.deb). Since Sylpheed 3.4beta7, the "SSL certificate is unknown" error messages are gone. Please fix it for Claws Mail as well. Regards
Hi, "SSL certificate is unknown" means you never reviewed and accepted it. Just review and accept it if its status is correct.
Hello, thanks for the fast response, but: In Thunderbird and Sylpheed (since the included SSL certificates have been updated in 3.4beta7), for example, I do not have to review and accept SSL certificates and do not receive "SSL certificate is unknown" error messages. Why do I have to review and accept them in Claws Mail? And why does Claws Mail complain about unknwon SSL certificates even though they are included in Claws Mail (as you are pretending). No offense, I just want to understand. Regards
(In reply to comment #4) > In Thunderbird and Sylpheed (since the included SSL certificates have been > updated in 3.4beta7), for example, I do not have to review and accept SSL > certificates and do not receive "SSL certificate is unknown" error messages. > > Why do I have to review and accept them in Claws Mail? Because Claws Mail presents unknown (and changed) certificates to the user, it is a feature and not something we wish to change. Claws Mail is neither Thunderbird, Sylpheed, Geary or any other MUA than Claws Mail. > And why does Claws Mail complain about unknwon SSL certificates even though > they are included in Claws Mail (as you are pretending). What is included are the root Certificate Authorities certificates, used to sign the certificates that servers present, and required for checking the validity of these certificates. Nobody ships a database of hosts SSL certificates. Also, please don't reopen bugs that have been closed unless you have been invited to do so.