On Wed, 27 Apr 2022 10:04:06 +0900 Byung-Hee HWANG <soyeo...@doraji.xyz> wrote:
> Dear Celejar, > > Celejar <cele...@gmail.com> writes: > > > On Tue, 26 Apr 2022 09:42:38 +0900 > > 황병희 <soyeo...@doraji.xyz> wrote: > > > >> Dear Greg, > >> > >> Greg Wooledge <g...@wooledge.org> writes: > >> > >> > (... thanks ...) > >> > unicorn:~$ apt-cache show ssmtp ... > >> Really i love sSMTP so much!!! > > > > FWIW, there's an outstanding ten year old bug against sSMTP pointing > > out that it doesn't bother to validate server TLS certificates. You'll > > have to decide whether this bothers you or not: > > > > https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=662960 > > That seems some technical issue. However i have no skills to repair that > C level program. > > Actually i have no trouble with current sSMTP. Both Gmail and yw-1204 > does not break about this matter (verify certificate). So for a while > i'll keep this state. It means that i will continue to use the sSMTP. [From another email by Byung-Hee:] > Correction: Exactly, i did't see any problems. Because i have been using > always > self-signed certficate with sSMTP. > > Sorry for confusing statement. I'm not sure what you are saying here - are you possibly confusing client and server certificates? - but the problem is not that sSMTP doesn't work with Gmail - the problem is that it doesn't verify the server's SSL certificate, so it's susceptible to a MITM attack by someone impersonating Gmail. Again, you'll have to judge for yourself whether this is something to worry about. -- Celejar
