[Pidgin] #15344: Pidgin should optionally remember expired TLS/SSL certificates from servers
Pidgin
trac at pidgin.im
Fri Oct 5 21:59:33 EDT 2012
#15344: Pidgin should optionally remember expired TLS/SSL certificates from servers
--------------------+-----------------------------------------------
Reporter: pazpaz | Owner: rekkanoryo
Type: defect | Status: new
Milestone: | Component: unclassified
Version: 2.10.6 | Keywords: certificate tls ssl expire dialog
--------------------+-----------------------------------------------
Every time I'm presented with an expired certificate warning Pidgin is
putting me at risk by making me confirm that this certificate is from whom
it claims to be from. I cannot verify fingerprints every time I'm
presented with these dialogs. I assume Pidgin doesn't verify fingerprints
in this instance. Maybe I'm wrong. Pidgin should only notify me when a
certificate's fingerprint has changed.
In addition, If I'm not around to confirm the certificate that connection
will stay offline and I can miss many hours of communications until I'm
around to confirm the expired certificate.
--
Ticket URL: <https://developer.pidgin.im/ticket/15344>
Pidgin <http://pidgin.im>
Pidgin
More information about the Tracker
mailing list