<string>If this option is selected, S/MIME certificates are validated online using the Online Certificates Status Protocol (OCSP). Fill in the URL of the OCSP responder below.</string>
<string>Enter here the address of the server for online validation of certificates (OCSP responder). The URL is usually starting with http://.</string>
<string>Ignore service URL of certificates</string>
</property>
</widget>
</vbox>
</widget>
<widget class="QCheckBox">
<property name="name">
<cstring>doNotCheckCertPolicyCB</cstring>
</property>
<property name="text">
<string>Do not check certificate policies</string>
</property>
<property name="whatsThis" stdset="0">
<string>By default GnuPG uses the file ~/.gnupg/policies.txt to check if a certificate policy is allowed. If this option is selected, policies are not checked.</string>
</property>
</widget>
<widget class="QCheckBox">
<property name="name">
<cstring>neverConsultCB</cstring>
</property>
<property name="text">
<string>Never consult a CRL</string>
</property>
<property name="whatsThis" stdset="0">
<string>If this option is checked, Certificate Revocation Lists are never used to validate S/MIME certificates.</string>
<string>If this option is checked, missing issuer certificates are fetched when necessary (this applies to both validation methods, CRLs and OCSP)</string>
</property>
</widget>
<widget class="QButtonGroup">
<property name="name">
<cstring>HTTPGroupBox</cstring>
</property>
<property name="title">
<string>HTTP Requests</string>
</property>
<vbox>
<property name="name">
<cstring>unnamed</cstring>
</property>
<widget class="QCheckBox">
<property name="name">
<cstring>disableHTTPCB</cstring>
</property>
<property name="text">
<string>Do not perform any HTTP requests</string>
</property>
<property name="whatsThis" stdset="0">
<string>Entirely disables the use of HTTP for S/MIME.</string>
<string>Use this proxy for HTTP requests: </string>
</property>
</widget>
<widget class="QRadioButton" row="0" column="0">
<property name="name">
<cstring>honorHTTPProxyRB</cstring>
</property>
<property name="text">
<string>Use system HTTP proxy:</string>
</property>
<property name="whatsThis" stdset="0">
<string>If this option is selected, the value of the HTTP proxy shown on the right (which comes from the environment variable http_proxy) will be used for any HTTP request.</string>
</property>
</widget>
<widget class="QLineEdit" row="1" column="1">
<property name="name">
<cstring>customHTTPProxy</cstring>
</property>
<property name="whatsThis" stdset="0">
<string>Enter here the location of your HTTP Proxy, which will be used for all HTTP requests relating to S/MIME. The syntax is host:port, for instance myproxy.nowhere.com:3128.</string>
</property>
</widget>
</grid>
</widget>
<widget class="QCheckBox" row="0" column="0">
<property name="name">
<cstring>ignoreHTTPDPCB</cstring>
</property>
<property name="text">
<string>Ignore HTTP CRL distribution point of certificates</string>
<string>When looking for the location of a CRL, the to-be-tested certificate usually tqcontains what are known as "CRL Distribution Point" (DP) entries, which are URLs describing the way to access the URL. The first found DP entry is used. With this option all entries using the HTTP scheme are ignored when looking for a suitable DP.</string>
<string>When looking for the location of a CRL, the to-be-tested certificate usually tqcontains what are known as "CRL Distribution Point" (DP) entries, which are URLs describing the way to access the URL. The first found DP entry is used. With this option all entries using the LDAP scheme are ignored when looking for a suitable DP.</string>
<string>Entering a LDAP server here will make all LDAP requests go to that server first. More precisely, this setting overrides any specified host and port part in a LDAP URL and will also be used if host and port have been omitted from the URL. Other LDAP servers will be used only if the connection to the "proxy" failed.
The syntax is "HOST" or "HOST:PORT". If PORT is omitted, port 389 (standard LDAP port) is used.</string>
