On 2020-10-15 23:42, Colomban Wendling wrote: > Anyway, the cert has now been updated to present the proper CN for the > domains I use, so I can connect again to my accounts with Gajim (after > validating the self-signed cert twice for some reason).
Good! More or less... > But I hardly > think a missing CN/SAN is a good reason to prevent any encrypted > communication. Any encryption is better than none in all cases -- even > if encrypting for a MiM. I'm saddened by this whole misconception that > encryption and signatures are the same thing and that the former is > useless without the latter. I agree. That's a general trend, which I gave up to fight. > And in any case, regardless of the above, the UI should be fixed not to > lead to a infinite loop of dialogs, and to properly reflect what the > actual problem is. True. Maybe there should be a separate bug report?