Menu
▾
▴
Re: [fetchmail-users] Fetchmail fails with BAD Command received in invalid state after upgrade to 6.3.24
|
From: Matthias A. <mat...@gm...> - 2013-01-09 21:04:27
|
Am 08.01.2013 00:23, schrieb Peter van Nes: > Hi Matthias, > > I got it working by re-configuring fetchmail with the --with-ssl option. > Just dropped a blog article on this subject for the benefit of others > http://www.petervannes.nl/files/95dd386524c1ee3647da739d455a2c70-51.php WARNING - ACTION REQUIRED! Please remove the "Install SSL Certificates" section from your blog post, and please tell me where you've obtained that misguided information, it needs to be purged. If there are archives or you know through pingbacks of other sites that have included your information, please notify them to remove that, too. If someone followed these instructions, please remove the server certificates from the trust store. In the best case, it will fail... It describes a useless, dangerous procedure that creates a false sense of security. c_rehash does not "verify" certificates, and anyone who follows your instructions can just as well disable SSL with no further loss in security -- anyone who pastes server certificates, rather than the CA certificates designated by the mail servers's operator, into his trust store, is opening his SSL connection to eavesdropping. You should have read README.SSL as shipped with recent fetchmail tarballs; for your convenience, see <http://git.berlios.de/cgi-bin/cgit.cgi/fetchmail/tree/README.SSL?h=legacy_63>. Perhaps I need to tighten SSL certificate validation even more... |
