mathstuf
commented
9 years ago Oops, this is already done in offlineimap. Got too carried away :) .
Closed mathstuf closed 9 years ago
mathstuf
commented
9 years ago Oops, this is already done in offlineimap. Got too carried away :) .
It would be nice to verify both the chain and the fingerprint. AFAICT, checking the fingerprint does not check the expiration date of the remote certificate (seeing as I just went through and regenerated certs which were being accepted even though they expired in April).
I didn't see this with offlineimap itself, but vdirsyncer which based its handling off of offlineimap (see untitaker/vdirsyncer#245).