I have a debian/testing install with mutt 1.5.21 installed. I've created my own Certificate Authority (a root certificate) and signed a certificate that my dovecot server presents for authentication.
I have setup Thunderbird with the Root Certificate and when the client
connects to my dovecot server, everything authenticates as expected, no
fuss, no muss. I've double checked that it works by removing the root
certificate from Thunderbird's CA list and I get the warning that the
server cannot be authenticated.
Point being- I am confident the certificate is properly signed.
I've installed my root certificate using `dpkg-reconfigure
ca-certificates` and have double checked that it exists in that it
exists in the `ca-certificate.crt` file in `/etc/ssl/certs`. I have
the following lines in my .muttrc:
set ssl_starttls = yes
set ssl_ca_certificates_file = /etc/ssl/certs/ca_certificates.crt
set certificate_file = .mutt/mutt_certificates
But when I connect to the IMAP server with mutt, I am always asked to
accept the certificate presented by the server. The documentation
indicates that it shouldn't be the case because I've told mutt where the
root certificates are.
If I accept the certificate, it does properly write it to the
certificate file and I don't get the question anymore, but I think this
is a potential problem because I'm not getting any indication that the
certificate was properly authenticated/ signed. Am I correct, or am I
missing something here?
Regards-
Gerry LaMontagne
signature.asc
Description: Digital signature
