Re: Raphael Geissert 2012-04-15 <201204151316.25456.geiss...@debian.org>
> irssi seems to be doing a reverse-lookup on the IP it is connecting to, and 
> when the x509 certificate for ssl is validated, it wants the hostname it 
> found via the reverse-lookup. Not that of the original hostname.

Hi,

this seems to be the case when `resolve_reverse_lookup` is set. The
default for this setting is OFF, so there shouldn't be any issue
verifying certificates that do not contain the PTR name in the default
config. (If there was, OFTC would have heard about it over the past
decade.)

I suggest closing this bug.

Christoph

Reply via email to