Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.Sign up
Add support for manual certificate verification #452
Users should have freedom to skip security measures that are enabled by default in Dino.
Proposed user flow:
This is how other clients handle this:
I don't accept the argument "LetsEncrypt makes getting valid certificates easy, so we shouldn't let users override invalid certificates". Unix philosophy has always been to let users who know what they're doing (and ones that don't!) force through anyway - that's what typical -f is for.
In my particular use case, I have a friend who self-signs the cert for their server, which I've been manually accepting in pidgin for years. I can't use dino to talk to them, at my own risk, because dino is making a security choice for me. As a result I can't use dino. Which is a shame, it looked like it might be my im client of choice.