From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from mimir.eigenstate.org ([206.124.132.107]) by ewsd; Mon Jul 20 10:06:15 EDT 2020
Received: from abbatoir.fios-router.home (pool-74-101-2-6.nycmny.fios.verizon.net [74.101.2.6])
	by mimir.eigenstate.org (OpenSMTPD) with ESMTPSA id 408a6c83 (TLSv1.2:ECDHE-RSA-AES256-SHA:256:NO);
	Mon, 20 Jul 2020 07:06:00 -0700 (PDT)
Message-ID: <12797BEC64C15CAB8201AA7801E6B319@eigenstate.org>
To: sirjofri@googlemail.com, 9front@9front.org
Subject: Re: [9front] patch smtp: ignore unrecognized certificates
Date: Mon, 20 Jul 2020 07:05:59 -0700
From: ori@eigenstate.org
In-Reply-To: <CAF5U_z0x8AGHiKhGR1v-7Kzk5NDTHX=j==Ef4_8J6e7Qkazs8g@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"
Content-Transfer-Encoding: 7bit
List-ID: <9front.9front.org>
List-Help: <http://lists.9front.org>
X-Glyph: ➈
X-Bullshit: agile cache component strategy-aware realtime-based database 

> this patch adds a new flag -c to upas/smtp command ( smtp(8) ). This flag
> removes the need to manually add thumbprints for tls certificates to
> /sys/lib/tls/smtp, ignoring unrecognized certificates.

I think this is a bad idea -- I'd prefer to make it more obvious how
to add the certificate in the first place. Possibly a upas/configmail
command that prompts for the server/login/..., and then gets the
thumbnail.

Ignoring the thumbprint entirely opens you up to MITM attacks.