~sircmpwn/aerc2#312: 
Custom RootCA for certificate verification

I think we should have an option for passing a custom root CAs to use when verifying server certificates when doing TLS. This could go along with pinning server certificates, or trust on first use (TOFU).

Status
RESOLVED WONT_FIX
Submitter
~quite
Assigned to
No-one
Submitted
7 months ago
Updated
6 months ago
Labels
No labels applied.

~sircmpwn REPORTED WONT_FIX 6 months ago

This is not supported by design. You should either use legit certificates or add your custom cert authority to your system's trust store.

~alexmo 6 months ago

Well I can understand why you don't want to support custom CAs, but pinning a server certificate is a legitimate feature request IMHO.

~omni referenced this from #329 6 months ago

Register here or Log in to comment, or comment via email.