[Pidgin] #6664: google.talk certificat
Pidgin
trac at pidgin.im
Wed Aug 20 17:15:52 EDT 2008
#6664: google.talk certificat
-----------------------------+----------------------------------------------
Reporter: eckes | Owner: deryni
Type: defect | Status: new
Component: XMPP | Version: 2.5.0
Keywords: TLS cettificate |
-----------------------------+----------------------------------------------
when using "old ssl protocol" on server talk.google.com the ssl
certificat's CN=talk.google.com works, so I dont get a certificate
warning. However if switch the old SSL option off and use port 5222 with
TLS I get a certificate warning that talk.google.com presents me a
certificate belonging to "googlemail.com".
I suspect that
a) goodle presents me a certificate belonging to the users domain instead
of the server. Which is actually a good thing, so the xmpp handler should
validate the CN against the login domain. This is especially true for
"google apps for domains"
b) there is no way to remeber my decision that the wrong CN should always
be accepted.
--
Ticket URL: <http://developer.pidgin.im/ticket/6664>
Pidgin <http://pidgin.im>
Pidgin
More information about the Tracker
mailing list