[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]

Re: [LUG] Certificate authorities was Re: Email encryption, was Re: www.dcglug.org.uk

To: DCLUG ML <list@xxxxxxxxxxxxx>
Subject: Re: [LUG] Certificate authorities was Re: Email encryption, was Re: www.dcglug.org.uk
From: Brad Rogers <brad@xxxxxxxxxxxx>
Date: Thu, 2 May 2013 17:03:39 +0100
Delivered-to: dclug@xxxxxxxxxxxxxxxxxxxxx
Face: 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

On Thu, 2 May 2013 16:43:25 +0100
Martijn Grooten <sweetwatergeek@xxxxxxxxx> wrote:

Hello Martijn,

>I'm still not sure Google is at fault though. It sounds to me that the
>default in Claws is unnecessarily strict.

Yes, CM errs on the side of caution/safety.  I like it that way.  OTOH,
no other company (that I deal with) has mail servers that have two certs
valid at any one time on their systems.  They all, when they change the
certificates, do all the machines at the same time.  At least, as far as
it's possible to perform such changes at the same time on (say) 200
machines.

I know also, that CM has the hidden pref setting you mention.  I don't
set it because of the previously mentioned security concerns regarding
forged certificates.

-- 
 Regards  _
         / )           "The blindingly obvious is
        / _)rad        never immediately apparent"
Who's a sucker now?
Edward The Bear - The Damned

Attachment: signature.asc
Description: PGP signature

-- 
The Mailing List for the Devon & Cornwall LUG
http://mailman.dclug.org.uk/listinfo/list
FAQ: http://www.dcglug.org.uk/listfaq

Follow-up: Re: [LUG] Certificate authorities was Re: Email encryption, was Re: www.dcglug.org.uk
- From: Martijn Grooten

References:
- Re: [LUG] Certificate authorities was Re: Email encryption, was Re: www.dcglug.org.uk
  - From: Simon Waters
- Re: [LUG] Certificate authorities was Re: Email encryption, was Re: www.dcglug.org.uk
  - From: Brad Rogers
- Re: [LUG] Certificate authorities was Re: Email encryption, was Re: www.dcglug.org.uk
  - From: Martijn Grooten
- Re: [LUG] Certificate authorities was Re: Email encryption, was Re: www.dcglug.org.uk
  - From: Brad Rogers
- Re: [LUG] Certificate authorities was Re: Email encryption, was Re: www.dcglug.org.uk
  - From: Martijn Grooten
- Re: [LUG] Certificate authorities was Re: Email encryption, was Re: www.dcglug.org.uk
  - From: Brad Rogers
- Re: [LUG] Certificate authorities was Re: Email encryption, was Re: www.dcglug.org.uk
  - From: Martijn Grooten

Prev by Date: Re: [LUG] Certificate authorities was Re: Email encryption, was Re: www.dcglug.org.uk
Next by Date: Re: [LUG] Avatars and advertising
Previous by thread: Re: [LUG] Certificate authorities was Re: Email encryption, was Re: www.dcglug.org.uk
Next by thread: Re: [LUG] Certificate authorities was Re: Email encryption, was Re: www.dcglug.org.uk
Index(es):
- Date
- Thread