Comment 22 for bug 19065
Revision history for this message
| Darren Carlson (darren-carlson) wrote | #22 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
35a32c5
(Get the code!)
@Matthias Heiler:
1. Download the Thawte root CA file by going here:
http://
you can fill out bogus information. I did :-)
2. From Evolution / Preferences / Certificates / Authorities, import a new cert file.
Use the "Thawte Server Roots / ThawtePremiumSe
This file has an MD5 hash of "069f6979166690
I believe Mikel Ward has this problem well described and I repeat the gist of his comments:
a. Evolution should not say a certificate is BAD when the problem is simply that it cannot verify the certificate because it does not recognize the Issuer as trusted. It should say UNKNOWN ISSUER, UNTRUSTED ISSUER, or something similar. BAD implied it failed some integrity check.
b. I also agree Evolution ought to be using an existing trusted certificate database. Certificate validation ought to be primarily an OS function, not an application function. If Evolution wants to keep user mail certs, that is fine. But when you go around sticking root CA's in a user app, that seems a little screwy to me.