Roundup Tracker - Issues

Issue 2551351

classification tighten up ssl connection
Type: security Severity: normal
Components: Mail interface Versions:
Status: new
: : rouilj
Priority: :

Created on 2024-05-15 03:53 by rouilj, last changed 2024-05-15 03:53 by rouilj.

msg8047 Author: [hidden] (rouilj) Date: 2024-05-15 03:53
When we have python 3.6 or newer we can set options in to validate the remote 
certificate name/subject_alt_name and load default certs from the hosts certificate store.

We need tests to verify this works.

Consider a test server like:

  mailpit (
  smtp4dev (
  greenmail (

that can do starttls (initial connection tcp then upgrade to TLS)
or TLS/SSL (all connections over TLS). (Note we can't do TLS/SSL
we only support starttls.)
Date User Action Args
2024-05-15 03:53:42rouiljcreate