Claws Mail warns that gmail certificate changed on every connection
Since recently, my Claws Mail client pops up a message "SSL/TSL certificate changed" every time it tries to connect to my gmail account (at pop.gmail.com), with two options: "Cancel connection" and "Accept and Save". I use accept and save, but after 5 minutes the situation repeats. I know I can set skip_ssl_cert_check=1 in the configuration file clawsrc, but I don't fully understand security implications for that. What is particularly strange for me, googling on this pop-up message yields absolutely nothing, as if I am the first Claws and gmail user to encounter this problem. I use Claws version 3.16.0, ported in Windows 10, if that helps.
ssl gmail claws-mail
asked Jun 20 '18 at 12:54
MaximkoMaximko
112
add a comment |
Since recently, my Claws Mail client pops up a message "SSL/TSL certificate changed" every time it tries to connect to my gmail account (at pop.gmail.com), with two options: "Cancel connection" and "Accept and Save". I use accept and save, but after 5 minutes the situation repeats. I know I can set skip_ssl_cert_check=1 in the configuration file clawsrc, but I don't fully understand security implications for that. What is particularly strange for me, googling on this pop-up message yields absolutely nothing, as if I am the first Claws and gmail user to encounter this problem. I use Claws version 3.16.0, ported in Windows 10, if that helps.
ssl gmail claws-mail
asked Jun 20 '18 at 12:54
MaximkoMaximko
112
Do you know if Claws uses the certificate store of the OS or has its own certificate store like Firefox?
– Ramhound
Jun 20 '18 at 14:02
No idea. There is a menu item under Tools called SSL/TSL certificate, where I can see the saved certificates and their attributes (signature, expiration,...), but where they are stored is not obvious from there.
– Maximko
Jun 20 '18 at 14:21
You need to figure out the answer to my question
– Ramhound
Jun 20 '18 at 15:22
add a comment |
Since recently, my Claws Mail client pops up a message "SSL/TSL certificate changed" every time it tries to connect to my gmail account (at pop.gmail.com), with two options: "Cancel connection" and "Accept and Save". I use accept and save, but after 5 minutes the situation repeats. I know I can set skip_ssl_cert_check=1 in the configuration file clawsrc, but I don't fully understand security implications for that. What is particularly strange for me, googling on this pop-up message yields absolutely nothing, as if I am the first Claws and gmail user to encounter this problem. I use Claws version 3.16.0, ported in Windows 10, if that helps.
ssl gmail claws-mail
asked Jun 20 '18 at 12:54
MaximkoMaximko
112
Since recently, my Claws Mail client pops up a message "SSL/TSL certificate changed" every time it tries to connect to my gmail account (at pop.gmail.com), with two options: "Cancel connection" and "Accept and Save". I use accept and save, but after 5 minutes the situation repeats. I know I can set skip_ssl_cert_check=1 in the configuration file clawsrc, but I don't fully understand security implications for that. What is particularly strange for me, googling on this pop-up message yields absolutely nothing, as if I am the first Claws and gmail user to encounter this problem. I use Claws version 3.16.0, ported in Windows 10, if that helps.
ssl gmail claws-mail
ssl gmail claws-mail
asked Jun 20 '18 at 12:54
MaximkoMaximko
112
asked Jun 20 '18 at 12:54
MaximkoMaximko
112
asked Jun 20 '18 at 12:54
MaximkoMaximko
112
asked Jun 20 '18 at 12:54
MaximkoMaximko
112
asked Jun 20 '18 at 12:54
MaximkoMaximko
112
112
Do you know if Claws uses the certificate store of the OS or has its own certificate store like Firefox?
– Ramhound
Jun 20 '18 at 14:02
No idea. There is a menu item under Tools called SSL/TSL certificate, where I can see the saved certificates and their attributes (signature, expiration,...), but where they are stored is not obvious from there.
– Maximko
Jun 20 '18 at 14:21
You need to figure out the answer to my question
– Ramhound
Jun 20 '18 at 15:22
add a comment |
Do you know if Claws uses the certificate store of the OS or has its own certificate store like Firefox?
– Ramhound
Jun 20 '18 at 14:02
No idea. There is a menu item under Tools called SSL/TSL certificate, where I can see the saved certificates and their attributes (signature, expiration,...), but where they are stored is not obvious from there.
– Maximko
Jun 20 '18 at 14:21
You need to figure out the answer to my question
– Ramhound
Jun 20 '18 at 15:22
Do you know if Claws uses the certificate store of the OS or has its own certificate store like Firefox?
– Ramhound
Jun 20 '18 at 14:02
Do you know if Claws uses the certificate store of the OS or has its own certificate store like Firefox?
– Ramhound
Jun 20 '18 at 14:02
No idea. There is a menu item under Tools called SSL/TSL certificate, where I can see the saved certificates and their attributes (signature, expiration,...), but where they are stored is not obvious from there.
– Maximko
Jun 20 '18 at 14:21
No idea. There is a menu item under Tools called SSL/TSL certificate, where I can see the saved certificates and their attributes (signature, expiration,...), but where they are stored is not obvious from there.
– Maximko
Jun 20 '18 at 14:21
You need to figure out the answer to my question
– Ramhound
Jun 20 '18 at 15:22
You need to figure out the answer to my question
– Ramhound
Jun 20 '18 at 15:22
add a comment |
1 Answer
1
active
oldest
votes
To get rid of this annoying repeated message, click on Configuration -> Preferences for Current Account, then click on SSL/TLS and SCROLL DOWN that panel to reveal some hidden checkboxes. Check the box labelled "Automatically accept valid SSL/TLS certificates" and clear the box labelled "Use non-blocking SSL/TLS." It took me forever to realize there were additional settings at the bottom of this panel.
answered Feb 5 at 3:20
Rey LefebvreRey Lefebvre
1
Well, in my Claws Mail, I perfectly see those checkboxes right away when I open the SSL-config page :) But again, if I swap their check-states as you suggest, I do not fully understand security implications. After all, if this makes no difference in security and at the same time does not bother a user with SSL-question pop-ups, why is it not the default state?
– Maximko
Feb 5 at 17:42
add a comment |
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "3"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1332867%2fclaws-mail-warns-that-gmail-certificate-changed-on-every-connection%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
To get rid of this annoying repeated message, click on Configuration -> Preferences for Current Account, then click on SSL/TLS and SCROLL DOWN that panel to reveal some hidden checkboxes. Check the box labelled "Automatically accept valid SSL/TLS certificates" and clear the box labelled "Use non-blocking SSL/TLS." It took me forever to realize there were additional settings at the bottom of this panel.
answered Feb 5 at 3:20
Rey LefebvreRey Lefebvre
1
Well, in my Claws Mail, I perfectly see those checkboxes right away when I open the SSL-config page :) But again, if I swap their check-states as you suggest, I do not fully understand security implications. After all, if this makes no difference in security and at the same time does not bother a user with SSL-question pop-ups, why is it not the default state?
– Maximko
Feb 5 at 17:42
add a comment |
To get rid of this annoying repeated message, click on Configuration -> Preferences for Current Account, then click on SSL/TLS and SCROLL DOWN that panel to reveal some hidden checkboxes. Check the box labelled "Automatically accept valid SSL/TLS certificates" and clear the box labelled "Use non-blocking SSL/TLS." It took me forever to realize there were additional settings at the bottom of this panel.
answered Feb 5 at 3:20
Rey LefebvreRey Lefebvre
1
Well, in my Claws Mail, I perfectly see those checkboxes right away when I open the SSL-config page :) But again, if I swap their check-states as you suggest, I do not fully understand security implications. After all, if this makes no difference in security and at the same time does not bother a user with SSL-question pop-ups, why is it not the default state?
– Maximko
Feb 5 at 17:42
add a comment |
To get rid of this annoying repeated message, click on Configuration -> Preferences for Current Account, then click on SSL/TLS and SCROLL DOWN that panel to reveal some hidden checkboxes. Check the box labelled "Automatically accept valid SSL/TLS certificates" and clear the box labelled "Use non-blocking SSL/TLS." It took me forever to realize there were additional settings at the bottom of this panel.
answered Feb 5 at 3:20
Rey LefebvreRey Lefebvre
1
To get rid of this annoying repeated message, click on Configuration -> Preferences for Current Account, then click on SSL/TLS and SCROLL DOWN that panel to reveal some hidden checkboxes. Check the box labelled "Automatically accept valid SSL/TLS certificates" and clear the box labelled "Use non-blocking SSL/TLS." It took me forever to realize there were additional settings at the bottom of this panel.
answered Feb 5 at 3:20
Rey LefebvreRey Lefebvre
1
answered Feb 5 at 3:20
Rey LefebvreRey Lefebvre
1
answered Feb 5 at 3:20
Rey LefebvreRey Lefebvre
1
answered Feb 5 at 3:20
Rey LefebvreRey Lefebvre
1
1
Well, in my Claws Mail, I perfectly see those checkboxes right away when I open the SSL-config page :) But again, if I swap their check-states as you suggest, I do not fully understand security implications. After all, if this makes no difference in security and at the same time does not bother a user with SSL-question pop-ups, why is it not the default state?
– Maximko
Feb 5 at 17:42
add a comment |
Well, in my Claws Mail, I perfectly see those checkboxes right away when I open the SSL-config page :) But again, if I swap their check-states as you suggest, I do not fully understand security implications. After all, if this makes no difference in security and at the same time does not bother a user with SSL-question pop-ups, why is it not the default state?
– Maximko
Feb 5 at 17:42
Well, in my Claws Mail, I perfectly see those checkboxes right away when I open the SSL-config page :) But again, if I swap their check-states as you suggest, I do not fully understand security implications. After all, if this makes no difference in security and at the same time does not bother a user with SSL-question pop-ups, why is it not the default state?
– Maximko
Feb 5 at 17:42
Well, in my Claws Mail, I perfectly see those checkboxes right away when I open the SSL-config page :) But again, if I swap their check-states as you suggest, I do not fully understand security implications. After all, if this makes no difference in security and at the same time does not bother a user with SSL-question pop-ups, why is it not the default state?
– Maximko
Feb 5 at 17:42
add a comment |
Thanks for contributing an answer to Super User!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1332867%2fclaws-mail-warns-that-gmail-certificate-changed-on-every-connection%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Do you know if Claws uses the certificate store of the OS or has its own certificate store like Firefox?
– Ramhound
Jun 20 '18 at 14:02
No idea. There is a menu item under Tools called SSL/TSL certificate, where I can see the saved certificates and their attributes (signature, expiration,...), but where they are stored is not obvious from there.
– Maximko
Jun 20 '18 at 14:21
You need to figure out the answer to my question
– Ramhound
Jun 20 '18 at 15:22