On Wed, 2017-05-03 at 12:24 +0200, Moritz Schlarb wrote: > - This has been the behavior of the Nagstamon package since forever > (which is not a valid argumentation point - I know, but it's still a fact)
There are two serious bugs here: 1) that certificates are not verified at least using CAs and or TOFU 2) that this fact was deliberately hidden from users > What do you think? I think we should enable the warnings in all suites. Once verification is available, backport the patch to all suites. -- bye, pabs https://wiki.debian.org/PaulWise
signature.asc
Description: This is a digitally signed message part
