Bug #714: Quassel does not warn if SSL certificate changed on remote IRC server (not core) - Quassel IRC - Quassel IRC Issue Tracker

Bug #714

Quassel does not warn if SSL certificate changed on remote IRC server (not core)

Added by kitterma over 15 years ago. Updated over 15 years ago.

Status:

New

Priority:

Normal

Assignee:

Category:

Quassel Core

Target version:

Start date:

06/03/2009

Due date:

% Done:

Estimated time:

Version:

0.4.2

OS:

Linux

Description

One of the IRC servers I used upgraded to a new system and in the process changed their SSL certificate. All that happened is that I didn't automatically reconnect. Once I made the connection manually, it just went with no warning that the cert had changed.

While I'm not sure how important it is to do cert CA validation, I do think it's very important that if the cert for a channel changes the user is warned before reconnecting. This is important to prevent MITM attacks.

History

#1 Updated by EgS over 15 years ago

Priority changed from Urgent to Normal

Also available in: Atom PDF

Project

General

Profile

Quassel IRC

Issues

Bug #714

Quassel does not warn if SSL certificate changed on remote IRC server (not core)

History

#1 Updated by EgS over 15 years ago