X-Git-Url: http://pileus.org/git/?a=blobdiff_plain;f=TODO.txt;h=9a6b902c4b9399329b0a965ab8814b5a0784ce6d;hb=579d8fb9d4582e7a7a971dda382240f042a2f5a0;hp=f317b3813ac10e48ebb741abda0b25b3aa06282a;hpb=98cfcef26048bba06975e68a1aad05a8bac0d65d;p=~andy%2Ffetchmail diff --git a/TODO.txt b/TODO.txt index f317b381..9a6b902c 100644 --- a/TODO.txt +++ b/TODO.txt @@ -1,7 +1,7 @@ Note that there is a separate todo.html with different content than this. soon - MUST: -- blacklist DigiNotar/Comodo hacks/certs, possibly with Chrome's serial# +- blacklist DigiNotar/Comodo/Türktrust hacks/certs, possibly with Chrome's serial# list? - check if wildcards from X.509 are handled as strictly as required by the RFCs. @@ -111,7 +111,6 @@ questionable: - CRYPTO: perhaps port to NSS? Check license and features and required procedure changes. - Redhat Bugs #333741 (crypto consolidation), #346891 (port fetchmail to NSS) - CRYPTO: make the SSL default v3 (rather than v23). -- CRYPTO: remove sslfingerprint? too easily abused (see NEWS) - CRYPTO: force sslcertck - CRYPTO: by default forbid cleartext or other compromising password schemes over insecure connections? @@ -177,6 +176,21 @@ questionable: does it expect, what does it get instead, what does that mean, how can the user fix it; references to the manual) +- grarpamp suggested, on the fetchmail list in later April 2013, more + config file flexibility and explicitness, by marking polls, hosts, + accounts. See thread. + +- more selection options, Debian Bug#705291. + +- add a way to specify multiple fingerprints per host + +- add a way to specify non-MD5 fingerprints per host. SHA1 can be told + from its mere length; other digest algorithms would require some sort + of prefix. We may require the prefix for SHA1, too, for clarity. + +- more useful logging, suggested by Jerry, fetchmail-users, 17 May 2013 + should include date, time, message-id, and 250 Ok message from + listener that got forwarded to. DOCUMENTATION: - Add info whether Keywords are global, server or user keywords