X-Git-Url: http://www.privoxy.org/gitweb/?a=blobdiff_plain;f=TODO;h=b2a68a9f6c86f782783ad3a77ef353bfe75c147e;hb=43f9d69d1cfb312ac058e3cb761388caae33970a;hp=11b4d8068003ad1fa06a175ddbc45d126a7f4191;hpb=8c14f921e09f726b591707e0a4f09d51c2be2803;p=privoxy.git

diff --git a/TODO b/TODO
index 11b4d806..b2a68a9f 100644
--- a/TODO
+++ b/TODO
@@ -532,6 +532,13 @@ https://www.privoxy.org/donate
 200) Add a config directive that causes Privoxy to remove all
      host certificates before exiting.
 
+201) Add an action to change the trusted-cas-file for a section.
+     This should be useful in countries where a person-in-the-middle
+     attack is known to happen on some domains but should not be tolerated
+     on others. It would also allow to limit the accepted CA certificates
+     for given domains instead of accepting all that are specified with
+     the trusted-cas-file directive.
+
 ##########################################################################
 
 Hosting wish list (relevant for #53)