On 2017-07-12 16:05:59 +0200, Olaf Hering wrote: > On Wed, Jul 12, Vincent Lefevre wrote: > > > But you can check the details with "openssl s_client -connect ...", > > Thanks. These are all wellknown providers: > > openssl s_client -connect imap.gmail.com:imaps [...]
Peer signing digest: SHA256 So, that's OK. I don't know how to get the information about the intermediate certificates, but it's very unlikely that they have something worse. You can also try to see if there is any error with: gnutls-cli -p imaps imap.gmail.com If GnuTLS is consistent, it should yield an error (in case you have a broken configuration). -- Vincent Lefèvre <vinc...@vinc17.net> - Web: <https://www.vinc17.net/> 100% accessible validated (X)HTML - Blog: <https://www.vinc17.net/blog/> Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)
