Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Accept self-signed local certificates for local LDAP or database communication #709

Open
1 task done
chlarsen opened this issue Jun 19, 2024 · 0 comments
Open
1 task done

Accept self-signed local certificates for local LDAP or database communication #709

chlarsen opened this issue Jun 19, 2024 · 0 comments
Labels
new feature New feature.

Comments

@chlarsen
Copy link

Use case

I am running Maddy inside a FreeBSD 14.1 jail, with other mails (one the same physical server serving PostgreSQL and OpenLDAP. The communication between those jails should be encrypted, using locally produced certificated and a local certificate authority. As the latter cannot be verified via the Internet, Go routinely complains, and a "accept_insecure_certs" or something similar has to be added (as seen on Grafana, etc). Maddy does not yet have this switch to accept "insecure" certificates.

The workaround is to disable encryption, which is not really desirable.

Your idea for a solution

Simple add a toggle to the tls_client settings to accept "insecure" certfificates, as seen with other Go applications.

  • I'm willing to help with the implementation: I am not a programmer but half-way decent alpha tester :-)!
@chlarsen chlarsen added the new feature New feature. label Jun 19, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
new feature New feature.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@chlarsen