Hier mal ein paar ausgewählte ChangeLog-Einträge gegenüber Version 2.9p, die SSL- bzw. TLS-Bezug besitzen:
"2015-08-20 - mui/TCPIPConfigPage.c: added a missing parameter for a method invocation when clearing the SSL certificate warnings.
2014-09-29 - mui/TCPIPConfigPage.c: for each POP3 and SMTP server a list of all permanently accepted SSL certificate errors is shown below the configuration options along with the a button to reset the errors.
2014-09-28 - tcp/ssl.c: added some more debug output to catch why the certificate warning requester is really opened.
2014-06-26 - locale/YAM.pot: rephrased an SSL error message to better suit the current situation.
2014-06-04 - mui/TCPIPConfigPage.c: the standard POP3 and SMTP port numbers will now be shown right of the current port number. Changing the security settings will adapt the current port number only if it matches the standard port number to avoid loosing custom settings. Furthermore the SMTP port number together with the STARTTLS security option as been changed to the common value 587.
2014-05-22 - tcp/ssl.c: Now all possible X509_V_ERR_#? error defines are catchedt in our certificate verification routines. This should make sure that we don't have any uncritical case which otherwise would cause YAM to abort the connection initialization.
2014-05-21 - tcp/ssl.c, Requesters.c: the SSL certificate check now also catches cases where the certificate signature was found to be invalid which was otherwise throwing a connection error immediately. This case recently happens for connections to servers which use certifcates with A256-based signatures which are not supported by the latest AmiSSL 3.6 version. Now a user is warned instead about these invalid signatures and can continue the connection if he still believes he is trusting the server. - YAM.c: slightly changed the OpenSSL/AmiSSL initialization and added a call to OpenSSL_add_all_algorithms(). This hopefully improves verbosity of error output and perhaps improves cipher/digest handling."
