[GH-ISSUE #887] Self-signed certificates: Support Trust on first use #692

New issue

Open

opened 2026-02-26 01:31:22 +03:00 by kerem · 0 comments

kerem commented 2026-02-26 01:31:22 +03:00

Owner

Copy link

Originally created by @Woi on GitHub (Apr 22, 2018).
Original GitHub issue: https://github.com/jberkel/sms-backup-plus/issues/887

Background
There was some discussion in #839, on how to avoid unnoticed man-in-the-middle attacks (MITM) for connections using self-signed certificates. One suggested solution is documented in #875. Another suggestion was "trust on first use" (TOFU).

User Story
As user syncing to a server using a self signed cert, I like to get notified if the cert changes, to avoid unnoticed MITM.

Acceptance criteria

• SMS Backup+ shows a warning when connecting to a server which uses a certificate not signed by a trusted CA
• The user can chose to trust this cert or abort the connection
• The warning contains the necessary information (fingerprint of cert, server name, ...) to allow for an informed decision.
• Further connections to the same server succeed silently, if the cert was trusted
• If the cert changes to a cert which is not signed by a trusted CA, the same warning is shown as above.

Originally created by @Woi on GitHub (Apr 22, 2018). Original GitHub issue: https://github.com/jberkel/sms-backup-plus/issues/887 **Background** There was some discussion in #839, on how to avoid unnoticed man-in-the-middle attacks (MITM) for connections using self-signed certificates. One suggested solution is documented in #875. Another suggestion was "trust on first use" (TOFU). **User Story** As user syncing to a server using a self signed cert, I like to get notified if the cert changes, to avoid unnoticed MITM. **Acceptance criteria** * SMS Backup+ shows a warning when connecting to a server which uses a certificate not signed by a trusted CA * The user can chose to trust this cert or abort the connection * The warning contains the necessary information (fingerprint of cert, server name, ...) to allow for an informed decision. * Further connections to the same server succeed silently, if the cert was trusted * If the cert changes to a cert which is not signed by a trusted CA, the same warning is shown as above.

kerem added the

feature-request

security

labels 2026-02-26 01:31:22 +03:00

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

cyber1000-docker

multisim

update-build-process

gh-pages

jcrben-patch-1

workmanager

jcrben-patch-2

old-sms-backup

1.6.0-BETA2

1.6.0-BETA1

1.5.11

1.5.11-BETA22

1.5.11-BETA21

1.5.11-BETA20

1.5.11-BETA19

1.5.11-BETA18

1.5.11-BETA17

1.5.11-BETA16

1.5.11-BETA15

1.5.11-BETA14

1.5.11-BETA13

1.5.11-BETA12

1.5.11-BETA11

1.5.11-BETA10

1.5.11-BETA9

1.5.11-BETA8

1.5.11-BETA7

1.5.11-BETA6

1.5.11-BETA5

1.5.11-BETA4

1.5.11-BETA3

1.5.11-BETA2

1.5.11-BETA1

1.5.10

1.5.10-BETA1

1.5.9

1.5.9-BETA6

1.5.9-BETA5

1.5.9-BETA4

1.5.9-BETA3

1.5.9-BETA2

1.5.9-BETA1

1.5.8

1.5.8-BETA2

1.5.8-BETA1

1.5.7

1.5.7-BETA2

1.5.7-BETA1

1.5.6-DEBUG

1.5.6

1.5.6-RC1

1.5.6-BETA11

1.5.6-BETA10

1.5.6-BETA9

1.5.6-BETA8

1.5.6-BETA7

1.5.6-BETA6

1.5.6-BETA5

1.5.6-BETA4

1.5.6-BETA3

1.5.6-BETA2

1.5.6-BETA1

1.5.5

1.5.5-BETA2

1.5.5-BETA1

1.5.4

1.5.4-BETA2

1.5.4-BETA1

1.5.3

1.5.2

1.5.1

1.5.0

1.4.8

1.4.7

1.4.6

1.4.5

1.4.4

1.4.3

1.4.2

1.4.1

1.4.0

1.3.7

1.3.6

1.3.5

1.3.4

1.3.3

1.3.1

1.3.2

1.3

1.2

1.1.5

1.1.4

1.1.3

1.1.2

1.1.1

1.1

1.0.11

1.0.10

1.0.9

1.0.8

1.0.7

1.0.6

1.0.5

1.0.4

1.0.3

1.0.2

1.0.1

1.0

Labels

Clear labels   

AM+RCS

  

FAQ

  

awaiting response

  

backup

  

bespoke

  

bug

  

calendar

  

call log

  

cannot reproduce

  

cloudless

  

device-specific

  

documentation

  

dual- & multi-SIM

  

duplicate

  

feature-request

  

fixed in beta

  

good first issue

  

half-missing

  

help wanted

  

helpful

  

meta

  

misattribution

  

mms

  

other message sources

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

rejuvenation

  

restore

  

schedule

  

security

  

stale

  

task

  

thanks

  

v1.5.1

  

v1.5.10

  

v1.5.11

  

v1.5.2

  

v1.5.3

  

v1.5.3

  

v1.5.4

  

v1.5.4

  

v1.5.5

  

v1.5.5

  

v1.5.6

  

v1.5.7

  

v1.5.8

  

v1.5.9

  

v1.6β

  

xoauth

  

~$ bounty $~

No labels

AM+RCS

FAQ

awaiting response

backup

bespoke

bug

calendar

call log

cannot reproduce

cloudless

device-specific

documentation

dual- & multi-SIM

duplicate

feature-request

fixed in beta

good first issue

half-missing

help wanted

helpful

meta

misattribution

mms

other message sources

pull-request

question

rejuvenation

restore

schedule

security

stale

task

thanks

v1.5.1

v1.5.10

v1.5.11

v1.5.2

v1.5.3

v1.5.3

v1.5.4

v1.5.4

v1.5.5

v1.5.5

v1.5.6

v1.5.7

v1.5.8

v1.5.9

v1.6β

xoauth

~$ bounty $~

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/sms-backup-plus-jberkel#692

No description provided.