Rocksolid Light

Welcome to novaBBS (click a section below)

mail  files  register  nodelist  faq  login

That wouldn't be good enough. -- Larry Wall in <199710131621.JAA14907@wall.org>


computers / comp.mail.mutt / Problem with GMail changing sslfingerprint (Fetchmail + Mutt)

SubjectAuthor
* Problem with GMail changing sslfingerprint (Fetchmail + Mutt)Héctor Abreu
`- Re: Problem with GMail changing sslfingerprint (Fetchmail + Mutt)Tavis Ormandy

1
Subject: Problem with GMail changing sslfingerprint (Fetchmail + Mutt)
From: Héctor Abreu
Newsgroups: comp.mail.mutt
Organization: Spanish Connector
Date: Sun, 17 Jan 2021 17:19 UTC
Path: i2pn2.org!i2pn.org!eternal-september.org!reader02.eternal-september.org!.POSTED!not-for-mail
From: inva...@invalid.invalid (Héctor Abreu)
Newsgroups: comp.mail.mutt
Subject: Problem with GMail changing sslfingerprint (Fetchmail + Mutt)
Date: Sun, 17 Jan 2021 17:19:34 -0000 (UTC)
Organization: Spanish Connector
Lines: 34
Message-ID: <slrns08sa5.83h.invalid@eternal-september.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Injection-Date: Sun, 17 Jan 2021 17:19:34 -0000 (UTC)
Injection-Info: reader02.eternal-september.org; posting-host="0f365cbd9d1167b4873cc30b572ee66a";
logging-data="15763"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX18xlcYPzjwiXsuGKf7bfLG3FMKYz5sWgmqiiLDNjvhenA=="
User-Agent: slrn/1.0.3 (Linux)
Cancel-Lock: sha1:3zk92UMS/iyNfdxZK5rE50IyZDE=
View all headers
Hi,

I work via ssh using Mutt + Fetchmail and GMail POP3 service. I
frequently stop receiving emails because the sslfingerprint is
changed, and when I enter the new value in .fetchmailrc and go to
GMail settings to re-enable POP3, GMail settings offers me the option
of downloading all the messages again or only messages starting from
that very moment; I choose the latter, so I lose in my email client
all the messages from the moment the sslfingerprint was changed until
the moment I adjust its value to the new one and re-enable GMail POP3
settings. This is very annoying.

My .fetchmailrc looks like this:

set daemon 600

poll "pop.gmail.com" with proto POP3
port 995 user "my_email@gmail.com"
password "my_password"
sslfingerprint "6A:11:7A:51:A1:B1:D1:EF:ED:52:C3:0C:15:8F:A8:54"
no rewrite keep ssl nofetchall
mda "/usr/bin/maildrop"

I'm looking for a solution even if it is to stop using GMail, which
I'm planning anyway. I'd like to hear about alternative services who
are Fetchmail and Mutt friendly. I'm planning to use gpg for privacy,
too.

Thank you in advance for any hint or help.

Regards,

--
Héctor Abreu


Subject: Re: Problem with GMail changing sslfingerprint (Fetchmail + Mutt)
From: Tavis Ormandy
Newsgroups: comp.mail.mutt
Date: Sun, 17 Jan 2021 18:40 UTC
References: 1
Path: i2pn2.org!i2pn.org!news.swapon.de!fu-berlin.de!uni-berlin.de!individual.net!not-for-mail
From: tav...@gmail.com (Tavis Ormandy)
Newsgroups: comp.mail.mutt
Subject: Re: Problem with GMail changing sslfingerprint (Fetchmail + Mutt)
Date: 17 Jan 2021 18:40:24 GMT
Lines: 11
Message-ID: <i6jeknF18i6U1@mid.individual.net>
References: <slrns08sa5.83h.invalid@eternal-september.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
X-Trace: individual.net B1NUtx6F679AACIKQAEaSgAaUlD4RniktFfD2Lm04MVEbr6Uvz
Cancel-Lock: sha1:1Q5d1/RVeho1GLAAu0FAZzLzNjg=
User-Agent: slrn/pre1.0.4-4 (Linux)
View all headers
On 2021-01-17, Héctor Abreu <invalid@invalid.invalid> wrote:
sslfingerprint "6A:11:7A:51:A1:B1:D1:EF:ED:52:C3:0C:15:8F:A8:54"

Why not use sslcertck instead of hardcoding the fingerprint?

Tavis.

--
 _o)            $ lynx lock.cmpxchg8b.com
 /\\  _o)  _o)  $ finger taviso@sdf.org
_\_V _( ) _( )  @taviso


1
rocksolid light 0.7.2
clearneti2ptor