docker-offlineimap/offlineimap
Sebastian 4f57b94e23 Implement SSL certificate checking
Previously, we did not check at all the authenticy and validity of
the SSL server we connected to. This is bad as it allows
man-in-the-middle attacks etc. This patch remedies the situation
somewhat.

If we specify a sslcacertfile= setting in the Repository section,
validate the server cert (on python>=2.6 or abort with python<=2.5).

As before, no certificate check is performed without that option.
In the future, the hostname check should be made optional and also
a mutt-lick "accept this certificate forever" thing should be
implemented.

Signed-off-by: Sebastian Spaeth <Sebastian@SSpaeth.de>
Signed-off-by: Nicolas Sebrecht <nicolas.s-dev@laposte.net>
2010-12-16 19:15:33 +01:00
..
folder Change X-OfflineIMAP header format 2010-12-09 19:52:48 +01:00
repository Implement SSL certificate checking 2010-12-16 19:15:33 +01:00
ui Improve TTY ui to not always prepend 'sync account foo' 2010-12-09 19:52:48 +01:00
__init__.py Make a main class OfflineImap that is being called 2010-12-09 19:52:48 +01:00
accounts.py Prettify message formatting 2010-12-09 19:52:48 +01:00
CustomConfig.py Update FSF address 2006-08-12 05:15:55 +01:00
imaplibutil.py Implement SSL certificate checking 2010-12-16 19:15:33 +01:00
imapserver.py Implement SSL certificate checking 2010-12-16 19:15:33 +01:00
imaputil.py imaputil.py: factorize the flag map 2010-12-09 19:52:48 +01:00
init.py Merge branch 'ss/use-optionparser' into next 2010-12-15 20:14:59 +01:00
localeval.py Update FSF address 2006-08-12 05:15:55 +01:00
mbnames.py Update FSF address 2006-08-12 05:15:55 +01:00
syncmaster.py remove unneeded includes from syncmaster.py 2010-12-09 19:52:48 +01:00
threadutil.py Import cProfile module before falling back to profile 2010-12-09 19:52:48 +01:00
version.py Convert to use OptionParser for command line handling. 2010-12-15 20:02:27 +01:00