From: Stephen Berman <stephen.berman@gmx.net>
To: ding@gnus.org
Subject: Re: smtpmail: accept untrusted certificates?
Date: Thu, 29 Jan 2009 19:35:57 +0100 [thread overview]
Message-ID: <87fxj2c642.fsf@escher.local.home> (raw)
In-Reply-To: <874ozrqzwk.fsf@escher.local.home>
(My post was mangled; here is the whole thing.)
I have been using the following (partly anonymized) to send email from
one of my accounts:
(defun srb-rub-smtp-send-mail-setup ()
""
(interactive)
(makunbound 'message-send-mail-function)
(makunbound 'smtpmail-default-smtp-server)
(makunbound 'smtpmail-auth-credentials)
(setq message-send-mail-function 'smtpmail-send-it
smtpmail-default-smtp-server "mail.rub.de"
smtpmail-smtp-service 587
user-mail-address "xyz@rub.de"
smtpmail-auth-credentials
'(("mail.rub.de" 587 "username" "password"))
smtpmail-starttls-credentials
'(("mail.rub.de" 587 nil nil))))
Note that no certificate and key files are specified for
smtpmail-starttls-credentials. This code has worked fine until
recently. Now when I use it no mail is sent and I get the following in
*Messages*:
Sending via mail...
Opening STARTTLS connection to `mail.rub.de:587'...done
STARTTLS negotiation failed:
250 8BITMIME
STARTTLS
220 ready for tls
*** Starting TLS handshake
- Ephemeral Diffie-Hellman parameters
- Using prime: 1032 bits
- Secret key: 1013 bits
- Peer's public key: 1024 bits
- Certificate type: X.509
- Got a certificate list of 4 certificates.
- Certificate[0] info:
# The hostname in the certificate does NOT match 'mail.rub.de'.
smtpmail-send-command: Process SMTP not running
The SMTP session trace is:
Process SMTP exited abnormally with code 1
220 mail.ruhr-uni-bochum.de NO UCE C=DE ESMTP
EHLO escher.local.home
250-mail.ruhr-uni-bochum.de NO UCE C=DE
250-STARTTLS
250-AUTH LOGIN PLAIN
250-PIPELINING
EHLO escher.local.home
QUIT
When I opened this email account with Kmail (the KDE mail program), it
told me the certificate is untrusted, but allowed me to accept it
anyway. Is this also possible with smtpmail.el (or I suppose with the
program it uses, gnutls-cli), and if so, how?
Thanks,
Steve Berman
next prev parent reply other threads:[~2009-01-29 18:35 UTC|newest]
Thread overview: 4+ messages / expand[flat|nested] mbox.gz Atom feed top
2009-01-22 12:38 Stephen Berman
2009-01-29 18:35 ` Stephen Berman [this message]
2009-01-29 19:55 ` Ted Zlatanov
2009-02-03 15:19 ` Stephen Berman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=87fxj2c642.fsf@escher.local.home \
--to=stephen.berman@gmx.net \
--cc=ding@gnus.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).