[mew-int 01243] SSL support
Kazu Yamamoto ( 山本和彦 )
kazu at example.com
Tue Jan 14 22:40:10 JST 2003
Hello guys,
The SSL support of Mew 3.1 or earlier has a serious problem. That is,
even if verification of server's certificate failed, SSL connection is
created. This is inevitable if we go with "openssl s_client".
I found that "stunnel" is friendly to Mew. So, I decided to switch to
"stunnel" from "openssl".
In anon cvs, "stunnel" has been already supported and support for
"openssl" is obsoleted. If you want to protect POP/IMAP/SMTP/NNTP by
SSL, please install "stunnel".
Thanks to "stunnel", if verification of server's certificate failed,
SSL connection is not created.
Note that both "stunnel" v3 and v4 are supported. Its version is
checked when Mew boots.
Usage of SSL with "stunnel" is the same as that of SSL with "opnessl".
For instance, if you want to protect POP by SSL, set mew-pop-ssl to
't'.
P.S.
If a session is protected by SSL or SSH, an image of lock is displayed
in a mode line on Emacs 21.
--Kazu
More information about the Mew-int
mailing list