TLS Handler and stable release
Daniele E. Domenichelli
daniele.domenichelli at gmail.com
Fri Feb 8 15:11:44 UTC 2013
On 08/02/13 16:04, David Edmundson wrote:
>
> The lack of a TLS handler in 0.5 is in my opinion a quite big security
> bug, because in order to connect to a server with a self signed or
> expired certificate you have to disable ssl error checks, and therefore
> user is completely unprotected from man in the middle and similar
> attacks.
>
>
> This is *not true*.
>
> If we don't have a handler MC checks the certificate itself. If it's
> valid it goes through, if it's invalid the channel is rejected.
>
> The problems are:
> - it uses the system certs, not KDE cert rules
> - If it's wrong we can't prompt the user.
>
> To test this, simply connect to a local prosody server without ticking
> "ignore ssl errors", it blocks the connection
Sorry, what I mean that _if you check the "ignore ssl errors" checkbox_
then you are unprotected from attacks, we shouldn't probably even have
that checkbox...
Daniele
More information about the KDE-Telepathy
mailing list