Skip to content

BUG: TLS Insecure flag disables all verification without audit logging #925

Closed as not planned
Closed as not planned
BUG: TLS Insecure flag disables all verification without audit logging#925
Labels
bugSomething isn't workingneeds-responseWaiting on issue author replystaleNo activity for extended period
@andrinoff

Description

@andrinoff
andrinoff
opened on Apr 24, 2026

Describe the bug

The Insecure bool field in config/config.go disables all TLS certificate verification. Issues:

  • No distinction between self-signed and compromised/expired certs
  • No audit logging when insecure mode is active
  • No custom CA certificate support (would eliminate most insecure mode usage)
  • No cipher suite control for IMAP/SMTP TLS connections
  • No TLS certificate pinning

To reproduce

  1. Set insecure: true in account config
  2. All TLS verification disabled silently
  3. MITM attacks go undetected

Expected behavior

  • Add custom CA certificate path config option
  • Log warning on every connection when insecure mode active
  • Support certificate pinning (TOFU model)
  • Allow cipher suite configuration

Metadata

Metadata

Assignees

No one assigned

    Labels

    bugSomething isn't workingneeds-responseWaiting on issue author replystaleNo activity for extended period

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    v1 Release
    Status
    Done

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions