X-Git-Url: http://pileus.org/git/?a=blobdiff_plain;f=TODO.txt;h=ad0c77ad276debdfda5e57395dcc3dc775a585c1;hb=a23a8cf8ee1da51c4392b9f52e6b72b0c01e3b5e;hp=7a0eeb0b4ddb5d2a9a900c54d00f43df8f9a5990;hpb=910d5a2f852edb8c4e54c0e875da6a90385ab790;p=~andy%2Ffetchmail

diff --git a/TODO.txt b/TODO.txt
index 7a0eeb0b..ad0c77ad 100644
--- a/TODO.txt
+++ b/TODO.txt
@@ -111,7 +111,6 @@ questionable:
 - CRYPTO: perhaps port to NSS? Check license and features and required procedure
   changes. - Redhat Bugs #333741 (crypto consolidation), #346891 (port fetchmail to NSS)
 - CRYPTO: make the SSL default v3 (rather than v23).
-- CRYPTO: remove sslfingerprint? too easily abused (see NEWS)
 - CRYPTO: force sslcertck
 - CRYPTO: by default forbid cleartext or other compromising password
   schemes over insecure connections?
@@ -177,6 +176,17 @@ questionable:
   does it expect, what does it get instead, what does that mean, how can the
   user fix it; references to the manual)
 
+- grarpamp suggested, on the fetchmail list in later April 2013, more
+  config file flexibility and explicitness, by marking polls, hosts,
+  accounts.  See thread.
+
+- more selection options, Debian Bug#705291.
+
+- add a way to specify multiple fingerprints per host
+
+- add a way to specify non-MD5 fingerprints per host. SHA1 can be told
+  from its mere length; other digest algorithms would require some sort
+  of prefix. We may require the prefix for SHA1, too, for clarity.
 
 DOCUMENTATION:
 - Add info whether Keywords are global, server or user keywords