Groups | Search | Server Info | Login | Register

Groups > linux.debian.security > #6494

Re: Errands task manager upstream unconditionally disables TLS certificate verification for CalDAV; does this need to be addressed?

From Russell Coker <russell@coker.com.au>
Newsgroups linux.debian.security
Subject Re: Errands task manager upstream unconditionally disables TLS certificate verification for CalDAV; does this need to be addressed?
Date 2025-12-10 08:20 +0100
Message-ID <M0mEp-1Lgc-3@gated-at.bofh.it> (permalink)
References <M0mEp-1Lgc-5@gated-at.bofh.it>
Organization linux.* mail to news gateway

Show all headers | View raw

> > 	ssl_verify_cert=False,

This should be the subject of a severity important bug in Debian.

Have you tried changing False to True in your own installation?  If so does 
anything unexpected happen when you do that?

There's no requirement that we do the same as upstream in any regard, and 
particularly in regard to this sort of thing.

-- 
My Main Blog         http://etbe.coker.com.au/
My Documents Blog    http://doc.coker.com.au/

Back to linux.debian.security | Previous | Next | Find similar

Thread

  Re: Errands task manager upstream unconditionally disables TLS certificate  verification for CalDAV; does this need to be addressed? Russell Coker <russell@coker.com.au> - 2025-12-10 08:20 +0100

csiph-web