FileZilla Client should use the local certificate store
|Reported by:||Robert Sander||Owned by:|
|Keywords:||SSL certificate management||Cc:|
|Component version:||Operating system type:|
|Operating system version:|
Currently the FileZilla client does not trust any certifcate presented by the server even if it is signed by a Root CA.
FileZilla client should use the local certificate store (on Windows, Mac and Linux) to decide if a Root CA can be trusted and thus if the server's certificate can be trusted.
The user should not have to be bugged in the case a trust chain is already established.
This is espacially annoying when the server's certificate is renewed. Suddenly FileZilla client tells the user that the certificate is untrusted. In the end the user is confused resulting in support calls and frustration.