Hello Felix, On Friday, January 24, 2003 at 11:29:33 AM you [FB] wrote (at least in part):
FB> How do I allow self-signed certificates such as this one? Can i do it FB> without getting my ISP to send me their public/private key? I don't like to "disappoint" you, but the log output seems to show this cert is subjected to 'localhost'. So even if you get the public key you'll not succeed, because after "Trusted Root CA" check The Bat! does a comparison on "Cert.Subject == POP.Hostname", which will fail in your case because with a chance of 99% you don't fetch your mail from "localhost". Your ISP should generate a certificate for it's stunnel-setup that is subjected to the official, outside, server name customers are advised to enter into their mail program. Nevertheless here's the guide how it would work in general: Get http://www.ritlabs.com/download/the_bat/beta/openssl.rar, extract it, open a command line, make this command line window having a height of at least 43 lines and type openssl s_client -connect <your.isps.servername.here>:<port> You'll see a block of "text" surrounded by -----BEGIN CERTIFICATE----- ... -----END CERTIFICATE----- Copy this whole block, INCLUDING the 'BEGIN' and 'END' line into a text file. Type 'quit' in the command line where a '+OK' should be the last line. The connection will drop. Open The Bat! address book, go to "Trusted Root CA", create a new "Contact". Name it as you like, go to it's "Certificates" tab, use "Import" and point the dialog to the text file you've just created above. Confirm the dialog window by using "OK", the contact is stored, the very next mail check you do should work, if the POP3 server name matches the value in certificates subject. -- Regards Peter Palmreuther (The Bat! v1.63 Beta/5 on Windows 2000 5.0 Build 2195 Service Pack 1) I haven't lost my mind: I have it backed-up on tape. ________________________________________________ Current version is 1.62 | "Using TBUDL" information: http://www.silverstones.com/thebat/TBUDLInfo.html
